matrix-js-sdk 41.0.0 → 41.1.0

package/lib/matrixrtc/RTCEncryptionManager.js.map

@@ -1 +1 @@
-{"version":3,"file":"RTCEncryptionManager.js","names":["getEncryptionKeyMapKey","CallMembership","decodeBase64","encodeBase64","KeyTransportEvents","sleep","OutdatedKeyFilter","RTCEncryptionManager","constructor","ownMembership","getMemberships","transport","statistics","onEncryptionKeysChanged","parentLogger","rtcBackendIdProvider","_defineProperty","Map","undefined","membership","keyBase64Encoded","index","timestamp","_this$logger2","manageMediaKeys","_this$logger","logger","warn","concat","userId","deviceId","debug","keyBin","candidateInboundSession","key","keyIndex","creationTS","outdated","keyBuffer","isOutdated","addKeyToParticipant","counters","roomEventEncryptionKeysReceived","_this$logger3","info","getChild","rtcIdentityProvider","computeRtcIdentityRaw","getOwnRtcBackendIdentity","_this","_asyncToGenerator","ownRtcBackendIdentityCache","useHashedRtcBackendIdentity","_this$logger4","memberId","getEncryptionKeys","participantKeyRings","checkKeysWithoutMatchingRTCMembership","keyInfoTemp","keysWithoutMatchingRTCMembership","forEach","keyInfo","knownRtcMembership","fullMembership","find","member","_this$logger5","push","addKeyToParticipantWithBackendIdentity","rtcBackendIdentity","mapKey","has","set","get","join","joinConfig","_joinConfig$manageMed","_joinConfig$unstableS","_joinConfig$useKeyDel","_joinConfig$keyRotati","_this$logger6","unstableSendStickyEvents","useKeyDelay","keyRotationGracePeriodMs","on","ReceivedKeys","onNewKeyReceived","start","leave","off","stop","clear","ensureKeyDistribution","currentKeyDistributionPromise","_this$logger7","rolloutOutboundKey","then","_this$logger8","needToEnsureKeyAgain","_this$logger9","_this$logger0","onMembershipsUpdate","_this$logger1","oldMemberships","arguments","length","trace","_this2","_this2$outboundSessio","_this2$outboundSessio2","isFirstKey","outboundSession","firstKey","generateRandomKey","Date","now","sharedWith","keyId","toShareWith","filter","sender","map","membershipTs","createdTs","alreadySharedWith","x","some","o","anyLeft","anyJoined","toDistributeTo","outboundKey","hasKeyChanged","newOutboundKey","createNewOutboundSession","keyAge","_this2$logger","_this2$logger2","_this2$logger3","_this2$logger4","sendKey","roomEventEncryptionKeysSent","m","_this2$logger5","_this2$logger6","err","_this2$logger7","error","_this$logger10","nextKeyIndex","Uint8Array","globalThis","crypto","getRandomValues"],"sources":["../../src/matrixrtc/RTCEncryptionManager.ts"],"sourcesContent":["/*\nCopyright 2025 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nimport {\n    type CallMembershipIdentityParts,\n    getEncryptionKeyMapKey,\n    type IEncryptionManager,\n} from \"./EncryptionManager.ts\";\nimport { type EncryptionConfig, type MembershipConfig } from \"./MatrixRTCSession.ts\";\nimport { CallMembership } from \"./CallMembership.ts\";\nimport { decodeBase64, encodeBase64 } from \"../base64.ts\";\nimport { type IKeyTransport, type KeyTransportEventListener, KeyTransportEvents } from \"./IKeyTransport.ts\";\nimport { type Logger } from \"../logger.ts\";\nimport { sleep } from \"../utils.ts\";\nimport {\n    type EncryptionKeyMapKey,\n    type InboundEncryptionSession,\n    type OutboundEncryptionSession,\n    type ParticipantDeviceInfo,\n    type Statistics,\n} from \"./types.ts\";\nimport { OutdatedKeyFilter } from \"./utils.ts\";\n\n/**\n * RTCEncryptionManager is used to manage the encryption keys for a call.\n *\n * It is responsible for distributing the keys to the other participants and rotating the keys if needed.\n *\n * This manager when used with to-device transport will share the existing key only to new joiners, and rotate\n * if there is a leaver.\n *\n * XXX In the future we want to distribute a ratcheted key not the current one for new joiners.\n */\nexport class RTCEncryptionManager implements IEncryptionManager {\n    // This is a stop-gap solution for now. The preferred way to handle this case would be instead\n    // to create a NoOpEncryptionManager that does nothing and use it for the session.\n    // This will be done when removing the legacy EncryptionManager.\n    private manageMediaKeys = false;\n\n    private useHashedRtcBackendIdentity = false;\n    private ownRtcBackendIdentityCache: string | undefined;\n\n    /**\n     * Store the key rings for each participant.\n     * The encryption manager stores the keys because the application layer might not be ready yet to handle the keys.\n     * The keys are stored and can be retrieved later when the application layer is ready {@link RTCEncryptionManager#getEncryptionKeys}.\n     */\n    private participantKeyRings = new Map<\n        EncryptionKeyMapKey,\n        Array<{\n            key: Uint8Array<ArrayBuffer>;\n            keyIndex: number;\n            membership: CallMembershipIdentityParts;\n            rtcBackendIdentity: string;\n        }>\n    >();\n\n    // The current per-sender media key for this device\n    private outboundSession: OutboundEncryptionSession | null = null;\n\n    /**\n     * Ensures that there is only one distribute operation at a time for that call.\n     */\n    private currentKeyDistributionPromise: Promise<void> | null = null;\n\n    /**\n     * The time to wait before using the outbound session after it has been distributed.\n     * This is to ensure that the key is delivered to all participants before it is used.\n     * When creating the first key, this is set to 0 so that the key can be used immediately.\n     */\n    private useKeyDelay = 5000;\n\n    /**\n     * We want to avoid rolling out a new outbound key when the previous one was created less than `keyRotationGracePeriodMs` milliseconds ago.\n     * This is to avoid expensive key rotations when users quickly join the call in a row.\n     *\n     * This must be higher than `useKeyDelay` to have an effect.\n     * If it is lower, the current key will always be older than the grace period.\n     * @private\n     */\n    private keyRotationGracePeriodMs = 10_000;\n\n    /**\n     * If a new key distribution is being requested while one is going on, we will set this flag to true.\n     * This will ensure that a new round is started after the current one.\n     * @private\n     */\n    private needToEnsureKeyAgain = false;\n\n    /**\n     * There is a possibility that keys arrive in the wrong order.\n     * For example, after a quick join/leave/join, there will be 2 keys of index 0 distributed, and\n     * if they are received in the wrong order, the stream won't be decryptable.\n     * For that reason we keep a small buffer of keys for a limited time to disambiguate.\n     * @private\n     */\n    private keyBuffer = new OutdatedKeyFilter();\n\n    private logger: Logger | undefined = undefined;\n\n    private rtcIdentityProvider: (userId: string, deviceId: string, memberId: string) => Promise<string>;\n\n    /**\n     *\n     * @param ownMembership - our own membership info\n     * @param getMemberships - function to get current memberships\n     * @param transport - key transport (room or to-device)\n     * @param statistics - statistics collector\n     * @param onEncryptionKeysChanged - callback to notify the media layer of new keys\n     * @param parentLogger - optional parent logger\n     * @param rtcBackendIdProvider - A function to compute the rtc backend identity, exposed for testing purposes\n     */\n    public constructor(\n        private ownMembership: CallMembershipIdentityParts,\n        private getMemberships: () => CallMembership[],\n        private transport: IKeyTransport,\n        private statistics: Statistics,\n        // Callback to notify the media layer of new keys\n        private onEncryptionKeysChanged: (\n            keyBin: Uint8Array<ArrayBuffer>,\n            encryptionKeyIndex: number,\n            membership: CallMembershipIdentityParts,\n            rtcBackendIdentity: string,\n        ) => void,\n        parentLogger?: Logger,\n        rtcBackendIdProvider?: (userId: string, deviceId: string, memberId: string) => Promise<string>,\n    ) {\n        this.logger = parentLogger?.getChild(`[EncryptionManager]`);\n        this.rtcIdentityProvider = rtcBackendIdProvider ?? CallMembership.computeRtcIdentityRaw;\n    }\n\n    private async getOwnRtcBackendIdentity(): Promise<string> {\n        if (this.ownRtcBackendIdentityCache) return this.ownRtcBackendIdentityCache;\n\n        if (this.useHashedRtcBackendIdentity) {\n            const { userId, deviceId, memberId } = this.ownMembership;\n            this.logger?.info(\n                // If we see this log multiple times, we need to reconsider the precompute call of getOwnRtcBackendIdentity\n                `Computing RTC backend identity for ${userId}:${deviceId}:${memberId} (SHOULD ONLY BE CALLED ONCE)`,\n            );\n            this.ownRtcBackendIdentityCache = await this.rtcIdentityProvider(userId, deviceId, memberId);\n        } else {\n            this.ownRtcBackendIdentityCache = `${this.ownMembership.userId}:${this.ownMembership.deviceId}`;\n        }\n        return this.ownRtcBackendIdentityCache;\n    }\n\n    public getEncryptionKeys(): ReadonlyMap<\n        EncryptionKeyMapKey,\n        ReadonlyArray<{\n            key: Uint8Array<ArrayBuffer>;\n            keyIndex: number;\n            membership: CallMembershipIdentityParts;\n            rtcBackendIdentity: string;\n        }>\n    > {\n        return new Map(this.participantKeyRings);\n    }\n\n    private keysWithoutMatchingRTCMembership: Array<{\n        key: Uint8Array<ArrayBuffer>;\n        keyIndex: number;\n        membership: CallMembershipIdentityParts;\n    }> = [];\n\n    private checkKeysWithoutMatchingRTCMembership(): void {\n        const keyInfoTemp = this.keysWithoutMatchingRTCMembership;\n        this.keysWithoutMatchingRTCMembership = [];\n        keyInfoTemp.forEach((keyInfo) => {\n            this.addKeyToParticipant(keyInfo.key, keyInfo.keyIndex, keyInfo.membership);\n        });\n    }\n\n    private addKeyToParticipant(\n        key: Uint8Array<ArrayBuffer>,\n        keyIndex: number,\n        membership: CallMembershipIdentityParts,\n    ): void {\n        const knownRtcMembership = this.getMemberships();\n        const fullMembership = knownRtcMembership.find(\n            (member) => member.userId === membership.userId && member.deviceId === membership.deviceId,\n        );\n        if (!fullMembership) {\n            this.logger?.info(\n                `No matching RTC membership for key from ${membership.userId}:${membership.deviceId}, delaying key addition`,\n            );\n            this.keysWithoutMatchingRTCMembership.push({ key, keyIndex, membership });\n            return;\n        }\n        this.addKeyToParticipantWithBackendIdentity(key, keyIndex, membership, fullMembership.rtcBackendIdentity);\n    }\n\n    private addKeyToParticipantWithBackendIdentity(\n        key: Uint8Array<ArrayBuffer>,\n        keyIndex: number,\n        membership: CallMembershipIdentityParts,\n        rtcBackendIdentity: string,\n    ): void {\n        const mapKey = getEncryptionKeyMapKey(membership);\n        if (!this.participantKeyRings.has(mapKey)) {\n            this.participantKeyRings.set(mapKey, []);\n        }\n        this.participantKeyRings.get(mapKey)!.push({ key, keyIndex, membership, rtcBackendIdentity });\n        this.onEncryptionKeysChanged(key, keyIndex, membership, rtcBackendIdentity);\n    }\n\n    public join(joinConfig: (EncryptionConfig & MembershipConfig) | undefined): void {\n        this.manageMediaKeys = joinConfig?.manageMediaKeys ?? true; // default to true\n        this.useHashedRtcBackendIdentity = joinConfig?.unstableSendStickyEvents ?? false;\n        this.useKeyDelay = joinConfig?.useKeyDelay ?? 1000;\n        this.keyRotationGracePeriodMs = joinConfig?.keyRotationGracePeriodMs ?? 10_000;\n\n        this.transport.on(KeyTransportEvents.ReceivedKeys, this.onNewKeyReceived);\n        void this.getOwnRtcBackendIdentity(); // precompute own identity\n\n        this.logger?.info(`Joining room`);\n        this.transport.start();\n    }\n\n    public leave(): void {\n        this.transport.off(KeyTransportEvents.ReceivedKeys, this.onNewKeyReceived);\n        this.transport.stop();\n        this.participantKeyRings.clear();\n    }\n\n    /**\n     * Will ensure that a new key is distributed and used to encrypt our media.\n     * If there is already a key distribution in progress, it will schedule a new distribution round just after the current one is completed.\n     * If this function is called repeatedly while a distribution is in progress,\n     * the calls will be coalesced to a single new distribution (that will start just after the current one has completed).\n     */\n    private ensureKeyDistribution(): void {\n        // `manageMediaKeys` is a stop-gap solution for now. The preferred way to handle this case would be instead\n        // to create a NoOpEncryptionManager that does nothing and use it for the session.\n        // This will be done when removing the legacy EncryptionManager.\n        if (!this.manageMediaKeys) return;\n        if (this.currentKeyDistributionPromise == null) {\n            this.logger?.debug(`No active rollout, start a new one`);\n            // start a rollout\n            this.currentKeyDistributionPromise = this.rolloutOutboundKey().then(() => {\n                this.logger?.debug(`Rollout completed`);\n                this.currentKeyDistributionPromise = null;\n                if (this.needToEnsureKeyAgain) {\n                    this.logger?.debug(`New Rollout needed`);\n                    this.needToEnsureKeyAgain = false;\n                    // rollout a new one\n                    this.ensureKeyDistribution();\n                }\n            });\n        } else {\n            // There is a rollout in progress, but a key rotation is requested (could be caused by a ownMembership change)\n            // Remember that a new rotation is needed after the current one.\n            this.logger?.debug(`Rollout in progress, a new rollout will be started after the current one`);\n            this.needToEnsureKeyAgain = true;\n        }\n    }\n\n    public onNewKeyReceived: KeyTransportEventListener = (membership, keyBase64Encoded, index, timestamp) => {\n        // `manageMediaKeys` is a stop-gap solution for now. The preferred way to handle this case would be instead\n        // to create a NoOpEncryptionManager that does nothing and use it for the session.\n        // This will be done when removing the legacy EncryptionManager.\n        if (!this.manageMediaKeys) {\n            this.logger?.warn(\n                `Received key over transport ${membership.userId}:${membership.deviceId} at index ${index} but media keys are disabled`,\n            );\n            return;\n        }\n        this.logger?.debug(`Received key over transport ${membership.userId}:${membership.deviceId} at index ${index}`);\n\n        // We received a new key, notify the video layer of this new key so that it can decrypt the frames properly.\n        const keyBin = decodeBase64(keyBase64Encoded);\n        const candidateInboundSession: InboundEncryptionSession = {\n            key: keyBin,\n            membership,\n            keyIndex: index,\n            creationTS: timestamp,\n        };\n\n        const outdated = this.keyBuffer.isOutdated(membership, candidateInboundSession);\n        if (!outdated) {\n            this.addKeyToParticipant(\n                candidateInboundSession.key,\n                candidateInboundSession.keyIndex,\n                candidateInboundSession.membership,\n            );\n            this.statistics.counters.roomEventEncryptionKeysReceived += 1;\n        } else {\n            this.logger?.info(\n                `Received an out of order key for ${membership.userId}:${membership.deviceId}, dropping it`,\n            );\n        }\n    };\n\n    /**\n     * Called when the ownMembership of the call changes.\n     * This encryption manager is very basic, it will rotate the key everytime this is called.\n     * @param oldMemberships - This parameter is not used here, but it is kept for compatibility with the interface.\n     */\n    public onMembershipsUpdate(oldMemberships: CallMembership[] = []): void {\n        this.logger?.trace(`onMembershipsUpdate`);\n\n        // Ensure the key is distributed. This will be no-op if the key is already being distributed to everyone.\n        // If there is an ongoing distribution, it will be completed before a new one is started.\n        this.ensureKeyDistribution();\n        // ensure key emission to the rtc backend\n        this.checkKeysWithoutMatchingRTCMembership();\n    }\n\n    private async rolloutOutboundKey(): Promise<void> {\n        const isFirstKey = this.outboundSession == null;\n        if (isFirstKey) {\n            // create the first key\n            const firstKey = {\n                key: this.generateRandomKey(),\n                creationTS: Date.now(),\n                sharedWith: [],\n                keyId: 0,\n            };\n            this.outboundSession = firstKey;\n            this.addKeyToParticipantWithBackendIdentity(\n                firstKey.key,\n                firstKey.keyId,\n                this.ownMembership,\n                await this.getOwnRtcBackendIdentity(),\n            );\n        }\n        // get current memberships\n        const toShareWith: ParticipantDeviceInfo[] = this.getMemberships()\n            .filter((membership) => {\n                return membership.sender != undefined;\n            })\n            .map((membership) => {\n                return {\n                    userId: membership.sender!,\n                    deviceId: membership.deviceId,\n                    membershipTs: membership.createdTs(),\n                };\n            });\n\n        let alreadySharedWith = this.outboundSession?.sharedWith ?? [];\n\n        // Some users might have rotate their ownMembership event (formally called fingerprint) meaning they might have\n        // clear their key. Reset the `alreadySharedWith` flag for them.\n        alreadySharedWith = alreadySharedWith.filter(\n            (x) =>\n                // If there was a member with same userId and deviceId but different membershipTs, we need to clear it\n                !toShareWith.some(\n                    (o) => x.userId == o.userId && x.deviceId == o.deviceId && x.membershipTs != o.membershipTs,\n                ),\n        );\n\n        const anyLeft = alreadySharedWith.filter(\n            (x) =>\n                !toShareWith.some(\n                    (o) => x.userId == o.userId && x.deviceId == o.deviceId && x.membershipTs == o.membershipTs,\n                ),\n        );\n        const anyJoined = toShareWith.filter(\n            (x) =>\n                !alreadySharedWith.some(\n                    (o) => x.userId == o.userId && x.deviceId == o.deviceId && x.membershipTs == o.membershipTs,\n                ),\n        );\n\n        let toDistributeTo: ParticipantDeviceInfo[] = [];\n        let outboundKey: OutboundEncryptionSession;\n        let hasKeyChanged = false;\n        if (anyLeft.length > 0) {\n            // We need to rotate the key\n            const newOutboundKey = this.createNewOutboundSession();\n            hasKeyChanged = true;\n            toDistributeTo = toShareWith;\n            outboundKey = newOutboundKey;\n        } else if (anyJoined.length > 0) {\n            const now = Date.now();\n            const keyAge = now - this.outboundSession!.creationTS;\n            // If the current key is recently created (less than `keyRotationGracePeriodMs`), we can keep it and just distribute it to the new joiners.\n            if (keyAge < this.keyRotationGracePeriodMs) {\n                // keep the same key\n                // XXX In the future we want to distribute a ratcheted key, not the current one\n                this.logger?.debug(`New joiners detected, but the key is recent enough (age:${keyAge}), keeping it`);\n                toDistributeTo = anyJoined;\n                outboundKey = this.outboundSession!;\n            } else {\n                // We need to rotate the key\n                this.logger?.debug(`New joiners detected, rotating the key`);\n                const newOutboundKey = this.createNewOutboundSession();\n                hasKeyChanged = true;\n                toDistributeTo = toShareWith;\n                outboundKey = newOutboundKey;\n            }\n        } else {\n            // no changes\n            return;\n        }\n\n        try {\n            this.logger?.trace(`Sending key...`);\n            await this.transport.sendKey(encodeBase64(outboundKey.key), outboundKey.keyId, toDistributeTo);\n            this.statistics.counters.roomEventEncryptionKeysSent += 1;\n            outboundKey.sharedWith.push(...toDistributeTo);\n            this.logger?.trace(\n                `key index:${outboundKey.keyId} sent to ${outboundKey.sharedWith.map((m) => `${m.userId}:${m.deviceId}`).join(\",\")}`,\n            );\n            if (hasKeyChanged) {\n                // Delay a bit before using this key\n                // It is recommended not to start using a key immediately but instead wait for a short time to make sure it is delivered.\n                this.logger?.trace(`Delay Rollout for key:${outboundKey.keyId}...`);\n                await sleep(this.useKeyDelay);\n                this.logger?.trace(`...Delayed rollout of index:${outboundKey.keyId} `);\n                this.addKeyToParticipantWithBackendIdentity(\n                    outboundKey.key,\n                    outboundKey.keyId,\n                    this.ownMembership,\n                    await this.getOwnRtcBackendIdentity(),\n                );\n            }\n        } catch (err) {\n            this.logger?.error(`Failed to rollout key`, err);\n        }\n    }\n\n    private createNewOutboundSession(): OutboundEncryptionSession {\n        const newOutboundKey: OutboundEncryptionSession = {\n            key: this.generateRandomKey(),\n            creationTS: Date.now(),\n            sharedWith: [],\n            keyId: this.nextKeyIndex(),\n        };\n\n        this.logger?.info(`creating new outbound key index:${newOutboundKey.keyId}`);\n        // Set this new key as the current one\n        this.outboundSession = newOutboundKey;\n        return newOutboundKey;\n    }\n\n    private nextKeyIndex(): number {\n        if (this.outboundSession) {\n            return (this.outboundSession!.keyId + 1) % 256;\n        }\n        return 0;\n    }\n\n    private generateRandomKey(): Uint8Array<ArrayBuffer> {\n        const key = new Uint8Array(16);\n        globalThis.crypto.getRandomValues(key);\n        return key;\n    }\n}\n"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAEIA,sBAAsB,QAEnB,wBAAwB;AAE/B,SAASC,cAAc,QAAQ,qBAAqB;AACpD,SAASC,YAAY,EAAEC,YAAY,QAAQ,cAAc;AACzD,SAA6DC,kBAAkB,QAAQ,oBAAoB;AAE3G,SAASC,KAAK,QAAQ,aAAa;AAQnC,SAASC,iBAAiB,QAAQ,YAAY;;AAE9C;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,CAA+B;EAqE5D;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACWC,WAAWA,CACNC,aAA0C,EAC1CC,cAAsC,EACtCC,SAAwB,EACxBC,UAAsB;EAC9B;EACQC,uBAKC,EACTC,YAAqB,EACrBC,oBAA8F,EAChG;IAAA,KAbUN,aAA0C,GAA1CA,aAA0C;IAAA,KAC1CC,cAAsC,GAAtCA,cAAsC;IAAA,KACtCC,SAAwB,GAAxBA,SAAwB;IAAA,KACxBC,UAAsB,GAAtBA,UAAsB;IAAA,KAEtBC,uBAKC,GALDA,uBAKC;IAzFb;IACA;IACA;IAAAG,eAAA,0BAC0B,KAAK;IAAAA,eAAA,sCAEO,KAAK;IAAAA,eAAA;IAG3C;AACJ;AACA;AACA;AACA;IAJIA,eAAA,8BAK8B,IAAIC,GAAG,CAQnC,CAAC;IAEH;IAAAD,eAAA,0BAC4D,IAAI;IAEhE;AACJ;AACA;IAFIA,eAAA,wCAG8D,IAAI;IAElE;AACJ;AACA;AACA;AACA;IAJIA,eAAA,sBAKsB,IAAI;IAE1B;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;IAPIA,eAAA,mCAQmC,KAAM;IAEzC;AACJ;AACA;AACA;AACA;IAJIA,eAAA,+BAK+B,KAAK;IAEpC;AACJ;AACA;AACA;AACA;AACA;AACA;IANIA,eAAA,oBAOoB,IAAIV,iBAAiB,CAAC,CAAC;IAAAU,eAAA,iBAENE,SAAS;IAAAF,eAAA;IAAAA,eAAA,2CAiEzC,EAAE;IAAAA,eAAA,2BA8F8C,CAACG,UAAU,EAAEC,gBAAgB,EAAEC,KAAK,EAAEC,SAAS,KAAK;MAAA,IAAAC,aAAA;MACrG;MACA;MACA;MACA,IAAI,CAAC,IAAI,CAACC,eAAe,EAAE;QAAA,IAAAC,YAAA;QACvB,CAAAA,YAAA,OAAI,CAACC,MAAM,cAAAD,YAAA,eAAXA,YAAA,CAAaE,IAAI,gCAAAC,MAAA,CACkBT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,gBAAAF,MAAA,CAAaP,KAAK,iCAC7F,CAAC;QACD;MACJ;MACA,CAAAE,aAAA,OAAI,CAACG,MAAM,cAAAH,aAAA,eAAXA,aAAA,CAAaQ,KAAK,gCAAAH,MAAA,CAAgCT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,gBAAAF,MAAA,CAAaP,KAAK,CAAE,CAAC;;MAE/G;MACA,IAAMW,MAAM,GAAG9B,YAAY,CAACkB,gBAAgB,CAAC;MAC7C,IAAMa,uBAAiD,GAAG;QACtDC,GAAG,EAAEF,MAAM;QACXb,UAAU;QACVgB,QAAQ,EAAEd,KAAK;QACfe,UAAU,EAAEd;MAChB,CAAC;MAED,IAAMe,QAAQ,GAAG,IAAI,CAACC,SAAS,CAACC,UAAU,CAACpB,UAAU,EAAEc,uBAAuB,CAAC;MAC/E,IAAI,CAACI,QAAQ,EAAE;QACX,IAAI,CAACG,mBAAmB,CACpBP,uBAAuB,CAACC,GAAG,EAC3BD,uBAAuB,CAACE,QAAQ,EAChCF,uBAAuB,CAACd,UAC5B,CAAC;QACD,IAAI,CAACP,UAAU,CAAC6B,QAAQ,CAACC,+BAA+B,IAAI,CAAC;MACjE,CAAC,MAAM;QAAA,IAAAC,aAAA;QACH,CAAAA,aAAA,OAAI,CAACjB,MAAM,cAAAiB,aAAA,eAAXA,aAAA,CAAaC,IAAI,qCAAAhB,MAAA,CACuBT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,kBAChF,CAAC;MACL;IACJ,CAAC;IApKG,IAAI,CAACJ,MAAM,GAAGZ,YAAY,aAAZA,YAAY,uBAAZA,YAAY,CAAE+B,QAAQ,sBAAsB,CAAC;IAC3D,IAAI,CAACC,mBAAmB,GAAG/B,oBAAoB,aAApBA,oBAAoB,cAApBA,oBAAoB,GAAId,cAAc,CAAC8C,qBAAqB;EAC3F;EAEcC,wBAAwBA,CAAA,EAAoB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MACtD,IAAID,KAAI,CAACE,0BAA0B,EAAE,OAAOF,KAAI,CAACE,0BAA0B;MAE3E,IAAIF,KAAI,CAACG,2BAA2B,EAAE;QAAA,IAAAC,aAAA;QAClC,IAAM;UAAExB,MAAM;UAAEC,QAAQ;UAAEwB;QAAS,CAAC,GAAGL,KAAI,CAACxC,aAAa;QACzD,CAAA4C,aAAA,GAAAJ,KAAI,CAACvB,MAAM,cAAA2B,aAAA,eAAXA,aAAA,CAAaT,IAAI,CACb;QAAA,sCAAAhB,MAAA,CACsCC,MAAM,OAAAD,MAAA,CAAIE,QAAQ,OAAAF,MAAA,CAAI0B,QAAQ,kCACxE,CAAC;QACDL,KAAI,CAACE,0BAA0B,SAASF,KAAI,CAACH,mBAAmB,CAACjB,MAAM,EAAEC,QAAQ,EAAEwB,QAAQ,CAAC;MAChG,CAAC,MAAM;QACHL,KAAI,CAACE,0BAA0B,MAAAvB,MAAA,CAAMqB,KAAI,CAACxC,aAAa,CAACoB,MAAM,OAAAD,MAAA,CAAIqB,KAAI,CAACxC,aAAa,CAACqB,QAAQ,CAAE;MACnG;MACA,OAAOmB,KAAI,CAACE,0BAA0B;IAAC;EAC3C;EAEOI,iBAAiBA,CAAA,EAQtB;IACE,OAAO,IAAItC,GAAG,CAAC,IAAI,CAACuC,mBAAmB,CAAC;EAC5C;EAQQC,qCAAqCA,CAAA,EAAS;IAClD,IAAMC,WAAW,GAAG,IAAI,CAACC,gCAAgC;IACzD,IAAI,CAACA,gCAAgC,GAAG,EAAE;IAC1CD,WAAW,CAACE,OAAO,CAAEC,OAAO,IAAK;MAC7B,IAAI,CAACrB,mBAAmB,CAACqB,OAAO,CAAC3B,GAAG,EAAE2B,OAAO,CAAC1B,QAAQ,EAAE0B,OAAO,CAAC1C,UAAU,CAAC;IAC/E,CAAC,CAAC;EACN;EAEQqB,mBAAmBA,CACvBN,GAA4B,EAC5BC,QAAgB,EAChBhB,UAAuC,EACnC;IACJ,IAAM2C,kBAAkB,GAAG,IAAI,CAACpD,cAAc,CAAC,CAAC;IAChD,IAAMqD,cAAc,GAAGD,kBAAkB,CAACE,IAAI,CACzCC,MAAM,IAAKA,MAAM,CAACpC,MAAM,KAAKV,UAAU,CAACU,MAAM,IAAIoC,MAAM,CAACnC,QAAQ,KAAKX,UAAU,CAACW,QACtF,CAAC;IACD,IAAI,CAACiC,cAAc,EAAE;MAAA,IAAAG,aAAA;MACjB,CAAAA,aAAA,OAAI,CAACxC,MAAM,cAAAwC,aAAA,eAAXA,aAAA,CAAatB,IAAI,4CAAAhB,MAAA,CAC8BT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,4BACvF,CAAC;MACD,IAAI,CAAC6B,gCAAgC,CAACQ,IAAI,CAAC;QAAEjC,GAAG;QAAEC,QAAQ;QAAEhB;MAAW,CAAC,CAAC;MACzE;IACJ;IACA,IAAI,CAACiD,sCAAsC,CAAClC,GAAG,EAAEC,QAAQ,EAAEhB,UAAU,EAAE4C,cAAc,CAACM,kBAAkB,CAAC;EAC7G;EAEQD,sCAAsCA,CAC1ClC,GAA4B,EAC5BC,QAAgB,EAChBhB,UAAuC,EACvCkD,kBAA0B,EACtB;IACJ,IAAMC,MAAM,GAAGtE,sBAAsB,CAACmB,UAAU,CAAC;IACjD,IAAI,CAAC,IAAI,CAACqC,mBAAmB,CAACe,GAAG,CAACD,MAAM,CAAC,EAAE;MACvC,IAAI,CAACd,mBAAmB,CAACgB,GAAG,CAACF,MAAM,EAAE,EAAE,CAAC;IAC5C;IACA,IAAI,CAACd,mBAAmB,CAACiB,GAAG,CAACH,MAAM,CAAC,CAAEH,IAAI,CAAC;MAAEjC,GAAG;MAAEC,QAAQ;MAAEhB,UAAU;MAAEkD;IAAmB,CAAC,CAAC;IAC7F,IAAI,CAACxD,uBAAuB,CAACqB,GAAG,EAAEC,QAAQ,EAAEhB,UAAU,EAAEkD,kBAAkB,CAAC;EAC/E;EAEOK,IAAIA,CAACC,UAA6D,EAAQ;IAAA,IAAAC,qBAAA,EAAAC,qBAAA,EAAAC,qBAAA,EAAAC,qBAAA,EAAAC,aAAA;IAC7E,IAAI,CAACxD,eAAe,IAAAoD,qBAAA,GAAGD,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEnD,eAAe,cAAAoD,qBAAA,cAAAA,qBAAA,GAAI,IAAI,CAAC,CAAC;IAC5D,IAAI,CAACxB,2BAA2B,IAAAyB,qBAAA,GAAGF,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEM,wBAAwB,cAAAJ,qBAAA,cAAAA,qBAAA,GAAI,KAAK;IAChF,IAAI,CAACK,WAAW,IAAAJ,qBAAA,GAAGH,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEO,WAAW,cAAAJ,qBAAA,cAAAA,qBAAA,GAAI,IAAI;IAClD,IAAI,CAACK,wBAAwB,IAAAJ,qBAAA,GAAGJ,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEQ,wBAAwB,cAAAJ,qBAAA,cAAAA,qBAAA,GAAI,KAAM;IAE9E,IAAI,CAACpE,SAAS,CAACyE,EAAE,CAAChF,kBAAkB,CAACiF,YAAY,EAAE,IAAI,CAACC,gBAAgB,CAAC;IACzE,KAAK,IAAI,CAACtC,wBAAwB,CAAC,CAAC,CAAC,CAAC;;IAEtC,CAAAgC,aAAA,OAAI,CAACtD,MAAM,cAAAsD,aAAA,eAAXA,aAAA,CAAapC,IAAI,eAAe,CAAC;IACjC,IAAI,CAACjC,SAAS,CAAC4E,KAAK,CAAC,CAAC;EAC1B;EAEOC,KAAKA,CAAA,EAAS;IACjB,IAAI,CAAC7E,SAAS,CAAC8E,GAAG,CAACrF,kBAAkB,CAACiF,YAAY,EAAE,IAAI,CAACC,gBAAgB,CAAC;IAC1E,IAAI,CAAC3E,SAAS,CAAC+E,IAAI,CAAC,CAAC;IACrB,IAAI,CAAClC,mBAAmB,CAACmC,KAAK,CAAC,CAAC;EACpC;;EAEA;AACJ;AACA;AACA;AACA;AACA;EACYC,qBAAqBA,CAAA,EAAS;IAClC;IACA;IACA;IACA,IAAI,CAAC,IAAI,CAACpE,eAAe,EAAE;IAC3B,IAAI,IAAI,CAACqE,6BAA6B,IAAI,IAAI,EAAE;MAAA,IAAAC,aAAA;MAC5C,CAAAA,aAAA,OAAI,CAACpE,MAAM,cAAAoE,aAAA,eAAXA,aAAA,CAAa/D,KAAK,qCAAqC,CAAC;MACxD;MACA,IAAI,CAAC8D,6BAA6B,GAAG,IAAI,CAACE,kBAAkB,CAAC,CAAC,CAACC,IAAI,CAAC,MAAM;QAAA,IAAAC,aAAA;QACtE,CAAAA,aAAA,OAAI,CAACvE,MAAM,cAAAuE,aAAA,eAAXA,aAAA,CAAalE,KAAK,oBAAoB,CAAC;QACvC,IAAI,CAAC8D,6BAA6B,GAAG,IAAI;QACzC,IAAI,IAAI,CAACK,oBAAoB,EAAE;UAAA,IAAAC,aAAA;UAC3B,CAAAA,aAAA,OAAI,CAACzE,MAAM,cAAAyE,aAAA,eAAXA,aAAA,CAAapE,KAAK,qBAAqB,CAAC;UACxC,IAAI,CAACmE,oBAAoB,GAAG,KAAK;UACjC;UACA,IAAI,CAACN,qBAAqB,CAAC,CAAC;QAChC;MACJ,CAAC,CAAC;IACN,CAAC,MAAM;MAAA,IAAAQ,aAAA;MACH;MACA;MACA,CAAAA,aAAA,OAAI,CAAC1E,MAAM,cAAA0E,aAAA,eAAXA,aAAA,CAAarE,KAAK,2EAA2E,CAAC;MAC9F,IAAI,CAACmE,oBAAoB,GAAG,IAAI;IACpC;EACJ;EAsCA;AACJ;AACA;AACA;AACA;EACWG,mBAAmBA,CAAA,EAA8C;IAAA,IAAAC,aAAA;IAAA,IAA7CC,cAAgC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAtF,SAAA,GAAAsF,SAAA,MAAG,EAAE;IAC5D,CAAAF,aAAA,OAAI,CAAC5E,MAAM,cAAA4E,aAAA,eAAXA,aAAA,CAAaI,KAAK,sBAAsB,CAAC;;IAEzC;IACA;IACA,IAAI,CAACd,qBAAqB,CAAC,CAAC;IAC5B;IACA,IAAI,CAACnC,qCAAqC,CAAC,CAAC;EAChD;EAEcsC,kBAAkBA,CAAA,EAAkB;IAAA,IAAAY,MAAA;IAAA,OAAAzD,iBAAA;MAAA,IAAA0D,qBAAA,EAAAC,sBAAA;MAC9C,IAAMC,UAAU,GAAGH,MAAI,CAACI,eAAe,IAAI,IAAI;MAC/C,IAAID,UAAU,EAAE;QACZ;QACA,IAAME,QAAQ,GAAG;UACb9E,GAAG,EAAEyE,MAAI,CAACM,iBAAiB,CAAC,CAAC;UAC7B7E,UAAU,EAAE8E,IAAI,CAACC,GAAG,CAAC,CAAC;UACtBC,UAAU,EAAE,EAAE;UACdC,KAAK,EAAE;QACX,CAAC;QACDV,MAAI,CAACI,eAAe,GAAGC,QAAQ;QAC/BL,MAAI,CAACvC,sCAAsC,CACvC4C,QAAQ,CAAC9E,GAAG,EACZ8E,QAAQ,CAACK,KAAK,EACdV,MAAI,CAAClG,aAAa,QACZkG,MAAI,CAAC3D,wBAAwB,CAAC,CACxC,CAAC;MACL;MACA;MACA,IAAMsE,WAAoC,GAAGX,MAAI,CAACjG,cAAc,CAAC,CAAC,CAC7D6G,MAAM,CAAEpG,UAAU,IAAK;QACpB,OAAOA,UAAU,CAACqG,MAAM,IAAItG,SAAS;MACzC,CAAC,CAAC,CACDuG,GAAG,CAAEtG,UAAU,IAAK;QACjB,OAAO;UACHU,MAAM,EAAEV,UAAU,CAACqG,MAAO;UAC1B1F,QAAQ,EAAEX,UAAU,CAACW,QAAQ;UAC7B4F,YAAY,EAAEvG,UAAU,CAACwG,SAAS,CAAC;QACvC,CAAC;MACL,CAAC,CAAC;MAEN,IAAIC,iBAAiB,IAAAhB,qBAAA,IAAAC,sBAAA,GAAGF,MAAI,CAACI,eAAe,cAAAF,sBAAA,uBAApBA,sBAAA,CAAsBO,UAAU,cAAAR,qBAAA,cAAAA,qBAAA,GAAI,EAAE;;MAE9D;MACA;MACAgB,iBAAiB,GAAGA,iBAAiB,CAACL,MAAM,CACvCM,CAAC;MACE;MACA,CAACP,WAAW,CAACQ,IAAI,CACZC,CAAC,IAAKF,CAAC,CAAChG,MAAM,IAAIkG,CAAC,CAAClG,MAAM,IAAIgG,CAAC,CAAC/F,QAAQ,IAAIiG,CAAC,CAACjG,QAAQ,IAAI+F,CAAC,CAACH,YAAY,IAAIK,CAAC,CAACL,YACnF,CACR,CAAC;MAED,IAAMM,OAAO,GAAGJ,iBAAiB,CAACL,MAAM,CACnCM,CAAC,IACE,CAACP,WAAW,CAACQ,IAAI,CACZC,CAAC,IAAKF,CAAC,CAAChG,MAAM,IAAIkG,CAAC,CAAClG,MAAM,IAAIgG,CAAC,CAAC/F,QAAQ,IAAIiG,CAAC,CAACjG,QAAQ,IAAI+F,CAAC,CAACH,YAAY,IAAIK,CAAC,CAACL,YACnF,CACR,CAAC;MACD,IAAMO,SAAS,GAAGX,WAAW,CAACC,MAAM,CAC/BM,CAAC,IACE,CAACD,iBAAiB,CAACE,IAAI,CAClBC,CAAC,IAAKF,CAAC,CAAChG,MAAM,IAAIkG,CAAC,CAAClG,MAAM,IAAIgG,CAAC,CAAC/F,QAAQ,IAAIiG,CAAC,CAACjG,QAAQ,IAAI+F,CAAC,CAACH,YAAY,IAAIK,CAAC,CAACL,YACnF,CACR,CAAC;MAED,IAAIQ,cAAuC,GAAG,EAAE;MAChD,IAAIC,WAAsC;MAC1C,IAAIC,aAAa,GAAG,KAAK;MACzB,IAAIJ,OAAO,CAACvB,MAAM,GAAG,CAAC,EAAE;QACpB;QACA,IAAM4B,cAAc,GAAG1B,MAAI,CAAC2B,wBAAwB,CAAC,CAAC;QACtDF,aAAa,GAAG,IAAI;QACpBF,cAAc,GAAGZ,WAAW;QAC5Ba,WAAW,GAAGE,cAAc;MAChC,CAAC,MAAM,IAAIJ,SAAS,CAACxB,MAAM,GAAG,CAAC,EAAE;QAC7B,IAAMU,GAAG,GAAGD,IAAI,CAACC,GAAG,CAAC,CAAC;QACtB,IAAMoB,MAAM,GAAGpB,GAAG,GAAGR,MAAI,CAACI,eAAe,CAAE3E,UAAU;QACrD;QACA,IAAImG,MAAM,GAAG5B,MAAI,CAACxB,wBAAwB,EAAE;UAAA,IAAAqD,aAAA;UACxC;UACA;UACA,CAAAA,aAAA,GAAA7B,MAAI,CAACjF,MAAM,cAAA8G,aAAA,eAAXA,aAAA,CAAazG,KAAK,4DAAAH,MAAA,CAA4D2G,MAAM,kBAAe,CAAC;UACpGL,cAAc,GAAGD,SAAS;UAC1BE,WAAW,GAAGxB,MAAI,CAACI,eAAgB;QACvC,CAAC,MAAM;UAAA,IAAA0B,cAAA;UACH;UACA,CAAAA,cAAA,GAAA9B,MAAI,CAACjF,MAAM,cAAA+G,cAAA,eAAXA,cAAA,CAAa1G,KAAK,yCAAyC,CAAC;UAC5D,IAAMsG,eAAc,GAAG1B,MAAI,CAAC2B,wBAAwB,CAAC,CAAC;UACtDF,aAAa,GAAG,IAAI;UACpBF,cAAc,GAAGZ,WAAW;UAC5Ba,WAAW,GAAGE,eAAc;QAChC;MACJ,CAAC,MAAM;QACH;QACA;MACJ;MAEA,IAAI;QAAA,IAAAK,cAAA,EAAAC,cAAA;QACA,CAAAD,cAAA,GAAA/B,MAAI,CAACjF,MAAM,cAAAgH,cAAA,eAAXA,cAAA,CAAahC,KAAK,iBAAiB,CAAC;QACpC,MAAMC,MAAI,CAAChG,SAAS,CAACiI,OAAO,CAACzI,YAAY,CAACgI,WAAW,CAACjG,GAAG,CAAC,EAAEiG,WAAW,CAACd,KAAK,EAAEa,cAAc,CAAC;QAC9FvB,MAAI,CAAC/F,UAAU,CAAC6B,QAAQ,CAACoG,2BAA2B,IAAI,CAAC;QACzDV,WAAW,CAACf,UAAU,CAACjD,IAAI,CAAC,GAAG+D,cAAc,CAAC;QAC9C,CAAAS,cAAA,GAAAhC,MAAI,CAACjF,MAAM,cAAAiH,cAAA,eAAXA,cAAA,CAAajC,KAAK,cAAA9E,MAAA,CACDuG,WAAW,CAACd,KAAK,eAAAzF,MAAA,CAAYuG,WAAW,CAACf,UAAU,CAACK,GAAG,CAAEqB,CAAC,OAAAlH,MAAA,CAAQkH,CAAC,CAACjH,MAAM,OAAAD,MAAA,CAAIkH,CAAC,CAAChH,QAAQ,CAAE,CAAC,CAAC4C,IAAI,CAAC,GAAG,CAAC,CACtH,CAAC;QACD,IAAI0D,aAAa,EAAE;UAAA,IAAAW,cAAA,EAAAC,cAAA;UACf;UACA;UACA,CAAAD,cAAA,GAAApC,MAAI,CAACjF,MAAM,cAAAqH,cAAA,eAAXA,cAAA,CAAarC,KAAK,0BAAA9E,MAAA,CAA0BuG,WAAW,CAACd,KAAK,QAAK,CAAC;UACnE,MAAMhH,KAAK,CAACsG,MAAI,CAACzB,WAAW,CAAC;UAC7B,CAAA8D,cAAA,GAAArC,MAAI,CAACjF,MAAM,cAAAsH,cAAA,eAAXA,cAAA,CAAatC,KAAK,gCAAA9E,MAAA,CAAgCuG,WAAW,CAACd,KAAK,MAAG,CAAC;UACvEV,MAAI,CAACvC,sCAAsC,CACvC+D,WAAW,CAACjG,GAAG,EACfiG,WAAW,CAACd,KAAK,EACjBV,MAAI,CAAClG,aAAa,QACZkG,MAAI,CAAC3D,wBAAwB,CAAC,CACxC,CAAC;QACL;MACJ,CAAC,CAAC,OAAOiG,GAAG,EAAE;QAAA,IAAAC,cAAA;QACV,CAAAA,cAAA,GAAAvC,MAAI,CAACjF,MAAM,cAAAwH,cAAA,eAAXA,cAAA,CAAaC,KAAK,0BAA0BF,GAAG,CAAC;MACpD;IAAC;EACL;EAEQX,wBAAwBA,CAAA,EAA8B;IAAA,IAAAc,cAAA;IAC1D,IAAMf,cAAyC,GAAG;MAC9CnG,GAAG,EAAE,IAAI,CAAC+E,iBAAiB,CAAC,CAAC;MAC7B7E,UAAU,EAAE8E,IAAI,CAACC,GAAG,CAAC,CAAC;MACtBC,UAAU,EAAE,EAAE;MACdC,KAAK,EAAE,IAAI,CAACgC,YAAY,CAAC;IAC7B,CAAC;IAED,CAAAD,cAAA,OAAI,CAAC1H,MAAM,cAAA0H,cAAA,eAAXA,cAAA,CAAaxG,IAAI,oCAAAhB,MAAA,CAAoCyG,cAAc,CAAChB,KAAK,CAAE,CAAC;IAC5E;IACA,IAAI,CAACN,eAAe,GAAGsB,cAAc;IACrC,OAAOA,cAAc;EACzB;EAEQgB,YAAYA,CAAA,EAAW;IAC3B,IAAI,IAAI,CAACtC,eAAe,EAAE;MACtB,OAAO,CAAC,IAAI,CAACA,eAAe,CAAEM,KAAK,GAAG,CAAC,IAAI,GAAG;IAClD;IACA,OAAO,CAAC;EACZ;EAEQJ,iBAAiBA,CAAA,EAA4B;IACjD,IAAM/E,GAAG,GAAG,IAAIoH,UAAU,CAAC,EAAE,CAAC;IAC9BC,UAAU,CAACC,MAAM,CAACC,eAAe,CAACvH,GAAG,CAAC;IACtC,OAAOA,GAAG;EACd;AACJ","ignoreList":[]}
+{"version":3,"file":"RTCEncryptionManager.js","names":["getEncryptionKeyMapKey","decodeBase64","encodeBase64","KeyTransportEvents","sleep","OutdatedKeyFilter","computeRtcIdentityRaw","RTCEncryptionManager","constructor","ownMembership","getMemberships","transport","onEncryptionKeysChanged","parentLogger","rtcBackendIdProvider","_defineProperty","Map","undefined","membership","keyBase64Encoded","index","timestamp","_this$logger2","manageMediaKeys","_this$logger","logger","warn","concat","userId","deviceId","debug","keyBin","candidateInboundSession","key","keyIndex","creationTS","outdated","keyBuffer","isOutdated","addKeyToParticipant","_this$logger3","info","getChild","rtcIdentityProvider","getOwnRtcBackendIdentity","_this","_asyncToGenerator","ownRtcBackendIdentityCache","useHashedRtcBackendIdentity","_this$logger4","memberId","getEncryptionKeys","participantKeyRings","checkKeysWithoutMatchingRTCMembership","keyInfoTemp","keysWithoutMatchingRTCMembership","forEach","keyInfo","knownRtcMembership","fullMembership","find","member","_this$logger5","push","addKeyToParticipantWithBackendIdentity","rtcBackendIdentity","mapKey","has","set","get","join","joinConfig","_joinConfig$manageMed","_joinConfig$unstableS","_joinConfig$useKeyDel","_joinConfig$keyRotati","_this$logger6","unstableSendStickyEvents","useKeyDelay","keyRotationGracePeriodMs","on","ReceivedKeys","onNewKeyReceived","start","leave","off","stop","clear","ensureKeyDistribution","currentKeyDistributionPromise","_this$logger7","rolloutOutboundKey","then","_this$logger8","needToEnsureKeyAgain","_this$logger9","_this$logger0","onMembershipsUpdate","_this$logger1","oldMemberships","arguments","length","trace","_this2","_this2$outboundSessio","_this2$outboundSessio2","isFirstKey","outboundSession","firstKey","generateRandomKey","Date","now","sharedWith","keyId","toShareWith","filter","sender","map","membershipTs","createdTs","alreadySharedWith","x","some","o","anyLeft","anyJoined","toDistributeTo","outboundKey","hasKeyChanged","newOutboundKey","createNewOutboundSession","keyAge","_this2$logger","_this2$logger2","_this2$logger3","_this2$logger4","sendKey","m","_this2$logger5","_this2$logger6","err","_this2$logger7","error","_this$logger10","nextKeyIndex","Uint8Array","globalThis","crypto","getRandomValues"],"sources":["../../src/matrixrtc/RTCEncryptionManager.ts"],"sourcesContent":["/*\nCopyright 2025-2026 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nimport {\n    type CallMembershipIdentityParts,\n    getEncryptionKeyMapKey,\n    type IEncryptionManager,\n} from \"./EncryptionManager.ts\";\nimport { type EncryptionConfig, type MembershipConfig } from \"./MatrixRTCSession.ts\";\nimport type { CallMembership } from \"./CallMembership.ts\";\nimport { decodeBase64, encodeBase64 } from \"../base64.ts\";\nimport { type IKeyTransport, type KeyTransportEventListener, KeyTransportEvents } from \"./IKeyTransport.ts\";\nimport { type Logger } from \"../logger.ts\";\nimport { sleep } from \"../utils.ts\";\nimport {\n    type EncryptionKeyMapKey,\n    type InboundEncryptionSession,\n    type OutboundEncryptionSession,\n    type ParticipantDeviceInfo,\n} from \"./types.ts\";\nimport { OutdatedKeyFilter } from \"./utils.ts\";\nimport { computeRtcIdentityRaw } from \"./membershipData/rtc.ts\";\n\n/**\n * RTCEncryptionManager is used to manage the encryption keys for a call.\n *\n * It is responsible for distributing the keys to the other participants and rotating the keys if needed.\n *\n * This manager when used with to-device transport will share the existing key only to new joiners, and rotate\n * if there is a leaver.\n *\n * XXX In the future we want to distribute a ratcheted key not the current one for new joiners.\n */\nexport class RTCEncryptionManager implements IEncryptionManager {\n    // This is a stop-gap solution for now. The preferred way to handle this case would be instead\n    // to create a NoOpEncryptionManager that does nothing and use it for the session.\n    // This will be done when removing the legacy EncryptionManager.\n    private manageMediaKeys = false;\n\n    private useHashedRtcBackendIdentity = false;\n    private ownRtcBackendIdentityCache: string | undefined;\n\n    /**\n     * Store the key rings for each participant.\n     * The encryption manager stores the keys because the application layer might not be ready yet to handle the keys.\n     * The keys are stored and can be retrieved later when the application layer is ready {@link RTCEncryptionManager#getEncryptionKeys}.\n     */\n    private readonly participantKeyRings = new Map<\n        EncryptionKeyMapKey,\n        Array<{\n            key: Uint8Array<ArrayBuffer>;\n            keyIndex: number;\n            membership: CallMembershipIdentityParts;\n            rtcBackendIdentity: string;\n        }>\n    >();\n\n    // The current per-sender media key for this device\n    private outboundSession: OutboundEncryptionSession | null = null;\n\n    /**\n     * Ensures that there is only one distribute operation at a time for that call.\n     */\n    private currentKeyDistributionPromise: Promise<void> | null = null;\n\n    /**\n     * The time to wait before using the outbound session after it has been distributed.\n     * This is to ensure that the key is delivered to all participants before it is used.\n     * When creating the first key, this is set to 0 so that the key can be used immediately.\n     */\n    private useKeyDelay = 5000;\n\n    /**\n     * We want to avoid rolling out a new outbound key when the previous one was created less than `keyRotationGracePeriodMs` milliseconds ago.\n     * This is to avoid expensive key rotations when users quickly join the call in a row.\n     *\n     * This must be higher than `useKeyDelay` to have an effect.\n     * If it is lower, the current key will always be older than the grace period.\n     * @private\n     */\n    private keyRotationGracePeriodMs = 10_000;\n\n    /**\n     * If a new key distribution is being requested while one is going on, we will set this flag to true.\n     * This will ensure that a new round is started after the current one.\n     * @private\n     */\n    private needToEnsureKeyAgain = false;\n\n    /**\n     * There is a possibility that keys arrive in the wrong order.\n     * For example, after a quick join/leave/join, there will be 2 keys of index 0 distributed, and\n     * if they are received in the wrong order, the stream won't be decryptable.\n     * For that reason we keep a small buffer of keys for a limited time to disambiguate.\n     * @private\n     */\n    private keyBuffer = new OutdatedKeyFilter();\n\n    private logger: Logger | undefined = undefined;\n\n    private readonly rtcIdentityProvider: (userId: string, deviceId: string, memberId: string) => Promise<string>;\n\n    /**\n     *\n     * @param ownMembership - our own membership info\n     * @param getMemberships - function to get current memberships\n     * @param transport - key transport (room or to-device)\n     * @param statistics - statistics collector\n     * @param onEncryptionKeysChanged - callback to notify the media layer of new keys\n     * @param parentLogger - optional parent logger\n     * @param rtcBackendIdProvider - A function to compute the rtc backend identity, exposed for testing purposes\n     */\n    public constructor(\n        private readonly ownMembership: CallMembershipIdentityParts,\n        private getMemberships: () => CallMembership[],\n        private transport: IKeyTransport,\n        // Callback to notify the media layer of new keys\n        private onEncryptionKeysChanged: (\n            keyBin: Uint8Array<ArrayBuffer>,\n            encryptionKeyIndex: number,\n            membership: CallMembershipIdentityParts,\n            rtcBackendIdentity: string,\n        ) => void,\n        parentLogger?: Logger,\n        rtcBackendIdProvider?: (userId: string, deviceId: string, memberId: string) => Promise<string>,\n    ) {\n        this.logger = parentLogger?.getChild(`[EncryptionManager]`);\n        this.rtcIdentityProvider = rtcBackendIdProvider ?? computeRtcIdentityRaw;\n    }\n\n    private async getOwnRtcBackendIdentity(): Promise<string> {\n        if (this.ownRtcBackendIdentityCache) return this.ownRtcBackendIdentityCache;\n\n        if (this.useHashedRtcBackendIdentity) {\n            const { userId, deviceId, memberId } = this.ownMembership;\n            this.logger?.info(\n                // If we see this log multiple times, we need to reconsider the precompute call of getOwnRtcBackendIdentity\n                `Computing RTC backend identity for ${userId}:${deviceId}:${memberId} (SHOULD ONLY BE CALLED ONCE)`,\n            );\n            this.ownRtcBackendIdentityCache = await this.rtcIdentityProvider(userId, deviceId, memberId);\n        } else {\n            this.ownRtcBackendIdentityCache = `${this.ownMembership.userId}:${this.ownMembership.deviceId}`;\n        }\n        return this.ownRtcBackendIdentityCache;\n    }\n\n    public getEncryptionKeys(): ReadonlyMap<\n        EncryptionKeyMapKey,\n        ReadonlyArray<{\n            key: Uint8Array<ArrayBuffer>;\n            keyIndex: number;\n            membership: CallMembershipIdentityParts;\n            rtcBackendIdentity: string;\n        }>\n    > {\n        return new Map(this.participantKeyRings);\n    }\n\n    private keysWithoutMatchingRTCMembership: Array<{\n        key: Uint8Array<ArrayBuffer>;\n        keyIndex: number;\n        membership: CallMembershipIdentityParts;\n    }> = [];\n\n    private checkKeysWithoutMatchingRTCMembership(): void {\n        const keyInfoTemp = this.keysWithoutMatchingRTCMembership;\n        this.keysWithoutMatchingRTCMembership = [];\n        keyInfoTemp.forEach((keyInfo) => {\n            this.addKeyToParticipant(keyInfo.key, keyInfo.keyIndex, keyInfo.membership);\n        });\n    }\n\n    private addKeyToParticipant(\n        key: Uint8Array<ArrayBuffer>,\n        keyIndex: number,\n        membership: CallMembershipIdentityParts,\n    ): void {\n        const knownRtcMembership = this.getMemberships();\n        const fullMembership = knownRtcMembership.find(\n            (member) => member.userId === membership.userId && member.deviceId === membership.deviceId,\n        );\n        if (!fullMembership) {\n            this.logger?.info(\n                `No matching RTC membership for key from ${membership.userId}:${membership.deviceId}, delaying key addition`,\n            );\n            this.keysWithoutMatchingRTCMembership.push({ key, keyIndex, membership });\n            return;\n        }\n        this.addKeyToParticipantWithBackendIdentity(key, keyIndex, membership, fullMembership.rtcBackendIdentity);\n    }\n\n    private addKeyToParticipantWithBackendIdentity(\n        key: Uint8Array<ArrayBuffer>,\n        keyIndex: number,\n        membership: CallMembershipIdentityParts,\n        rtcBackendIdentity: string,\n    ): void {\n        const mapKey = getEncryptionKeyMapKey(membership);\n        if (!this.participantKeyRings.has(mapKey)) {\n            this.participantKeyRings.set(mapKey, []);\n        }\n        this.participantKeyRings.get(mapKey)!.push({ key, keyIndex, membership, rtcBackendIdentity });\n        this.onEncryptionKeysChanged(key, keyIndex, membership, rtcBackendIdentity);\n    }\n\n    public join(joinConfig: (EncryptionConfig & MembershipConfig) | undefined): void {\n        this.manageMediaKeys = joinConfig?.manageMediaKeys ?? true; // default to true\n        this.useHashedRtcBackendIdentity = joinConfig?.unstableSendStickyEvents ?? false;\n        this.useKeyDelay = joinConfig?.useKeyDelay ?? 1000;\n        this.keyRotationGracePeriodMs = joinConfig?.keyRotationGracePeriodMs ?? 10_000;\n\n        this.transport.on(KeyTransportEvents.ReceivedKeys, this.onNewKeyReceived);\n        void this.getOwnRtcBackendIdentity(); // precompute own identity\n\n        this.logger?.info(`Joining room`);\n        this.transport.start();\n    }\n\n    public leave(): void {\n        this.transport.off(KeyTransportEvents.ReceivedKeys, this.onNewKeyReceived);\n        this.transport.stop();\n        this.participantKeyRings.clear();\n    }\n\n    /**\n     * Will ensure that a new key is distributed and used to encrypt our media.\n     * If there is already a key distribution in progress, it will schedule a new distribution round just after the current one is completed.\n     * If this function is called repeatedly while a distribution is in progress,\n     * the calls will be coalesced to a single new distribution (that will start just after the current one has completed).\n     */\n    private ensureKeyDistribution(): void {\n        // `manageMediaKeys` is a stop-gap solution for now. The preferred way to handle this case would be instead\n        // to create a NoOpEncryptionManager that does nothing and use it for the session.\n        // This will be done when removing the legacy EncryptionManager.\n        if (!this.manageMediaKeys) return;\n        if (this.currentKeyDistributionPromise == null) {\n            this.logger?.debug(`No active rollout, start a new one`);\n            // start a rollout\n            this.currentKeyDistributionPromise = this.rolloutOutboundKey().then(() => {\n                this.logger?.debug(`Rollout completed`);\n                this.currentKeyDistributionPromise = null;\n                if (this.needToEnsureKeyAgain) {\n                    this.logger?.debug(`New Rollout needed`);\n                    this.needToEnsureKeyAgain = false;\n                    // rollout a new one\n                    this.ensureKeyDistribution();\n                }\n            });\n        } else {\n            // There is a rollout in progress, but a key rotation is requested (could be caused by a ownMembership change)\n            // Remember that a new rotation is needed after the current one.\n            this.logger?.debug(`Rollout in progress, a new rollout will be started after the current one`);\n            this.needToEnsureKeyAgain = true;\n        }\n    }\n\n    public onNewKeyReceived: KeyTransportEventListener = (membership, keyBase64Encoded, index, timestamp) => {\n        // `manageMediaKeys` is a stop-gap solution for now. The preferred way to handle this case would be instead\n        // to create a NoOpEncryptionManager that does nothing and use it for the session.\n        // This will be done when removing the legacy EncryptionManager.\n        if (!this.manageMediaKeys) {\n            this.logger?.warn(\n                `Received key over transport ${membership.userId}:${membership.deviceId} at index ${index} but media keys are disabled`,\n            );\n            return;\n        }\n        this.logger?.debug(`Received key over transport ${membership.userId}:${membership.deviceId} at index ${index}`);\n\n        // We received a new key, notify the video layer of this new key so that it can decrypt the frames properly.\n        const keyBin = decodeBase64(keyBase64Encoded);\n        const candidateInboundSession: InboundEncryptionSession = {\n            key: keyBin,\n            membership,\n            keyIndex: index,\n            creationTS: timestamp,\n        };\n\n        const outdated = this.keyBuffer.isOutdated(membership, candidateInboundSession);\n        if (!outdated) {\n            this.addKeyToParticipant(\n                candidateInboundSession.key,\n                candidateInboundSession.keyIndex,\n                candidateInboundSession.membership,\n            );\n        } else {\n            this.logger?.info(\n                `Received an out of order key for ${membership.userId}:${membership.deviceId}, dropping it`,\n            );\n        }\n    };\n\n    /**\n     * Called when the ownMembership of the call changes.\n     * This encryption manager is very basic, it will rotate the key everytime this is called.\n     * @param oldMemberships - This parameter is not used here, but it is kept for compatibility with the interface.\n     */\n    public onMembershipsUpdate(oldMemberships: CallMembership[] = []): void {\n        this.logger?.trace(`onMembershipsUpdate`);\n\n        // Ensure the key is distributed. This will be no-op if the key is already being distributed to everyone.\n        // If there is an ongoing distribution, it will be completed before a new one is started.\n        this.ensureKeyDistribution();\n        // ensure key emission to the rtc backend\n        this.checkKeysWithoutMatchingRTCMembership();\n    }\n\n    private async rolloutOutboundKey(): Promise<void> {\n        const isFirstKey = this.outboundSession == null;\n        if (isFirstKey) {\n            // create the first key\n            const firstKey = {\n                key: this.generateRandomKey(),\n                creationTS: Date.now(),\n                sharedWith: [],\n                keyId: 0,\n            };\n            this.outboundSession = firstKey;\n            this.addKeyToParticipantWithBackendIdentity(\n                firstKey.key,\n                firstKey.keyId,\n                this.ownMembership,\n                await this.getOwnRtcBackendIdentity(),\n            );\n        }\n        // get current memberships\n        const toShareWith: ParticipantDeviceInfo[] = this.getMemberships()\n            .filter((membership) => {\n                return membership.sender != undefined;\n            })\n            .map((membership) => {\n                return {\n                    userId: membership.sender!,\n                    deviceId: membership.deviceId,\n                    membershipTs: membership.createdTs(),\n                };\n            });\n\n        let alreadySharedWith = this.outboundSession?.sharedWith ?? [];\n\n        // Some users might have rotate their ownMembership event (formally called fingerprint) meaning they might have\n        // clear their key. Reset the `alreadySharedWith` flag for them.\n        alreadySharedWith = alreadySharedWith.filter(\n            (x) =>\n                // If there was a member with same userId and deviceId but different membershipTs, we need to clear it\n                !toShareWith.some(\n                    (o) => x.userId == o.userId && x.deviceId == o.deviceId && x.membershipTs != o.membershipTs,\n                ),\n        );\n\n        const anyLeft = alreadySharedWith.filter(\n            (x) =>\n                !toShareWith.some(\n                    (o) => x.userId == o.userId && x.deviceId == o.deviceId && x.membershipTs == o.membershipTs,\n                ),\n        );\n        const anyJoined = toShareWith.filter(\n            (x) =>\n                !alreadySharedWith.some(\n                    (o) => x.userId == o.userId && x.deviceId == o.deviceId && x.membershipTs == o.membershipTs,\n                ),\n        );\n\n        let toDistributeTo: ParticipantDeviceInfo[] = [];\n        let outboundKey: OutboundEncryptionSession;\n        let hasKeyChanged = false;\n        if (anyLeft.length > 0) {\n            // We need to rotate the key\n            const newOutboundKey = this.createNewOutboundSession();\n            hasKeyChanged = true;\n            toDistributeTo = toShareWith;\n            outboundKey = newOutboundKey;\n        } else if (anyJoined.length > 0) {\n            const now = Date.now();\n            const keyAge = now - this.outboundSession!.creationTS;\n            // If the current key is recently created (less than `keyRotationGracePeriodMs`), we can keep it and just distribute it to the new joiners.\n            if (keyAge < this.keyRotationGracePeriodMs) {\n                // keep the same key\n                // XXX In the future we want to distribute a ratcheted key, not the current one\n                this.logger?.debug(`New joiners detected, but the key is recent enough (age:${keyAge}), keeping it`);\n                toDistributeTo = anyJoined;\n                outboundKey = this.outboundSession!;\n            } else {\n                // We need to rotate the key\n                this.logger?.debug(`New joiners detected, rotating the key`);\n                const newOutboundKey = this.createNewOutboundSession();\n                hasKeyChanged = true;\n                toDistributeTo = toShareWith;\n                outboundKey = newOutboundKey;\n            }\n        } else {\n            // no changes\n            return;\n        }\n\n        try {\n            this.logger?.trace(`Sending key...`);\n            await this.transport.sendKey(encodeBase64(outboundKey.key), outboundKey.keyId, toDistributeTo);\n            outboundKey.sharedWith.push(...toDistributeTo);\n            this.logger?.trace(\n                `key index:${outboundKey.keyId} sent to ${outboundKey.sharedWith.map((m) => `${m.userId}:${m.deviceId}`).join(\",\")}`,\n            );\n            if (hasKeyChanged) {\n                // Delay a bit before using this key\n                // It is recommended not to start using a key immediately but instead wait for a short time to make sure it is delivered.\n                this.logger?.trace(`Delay Rollout for key:${outboundKey.keyId}...`);\n                await sleep(this.useKeyDelay);\n                this.logger?.trace(`...Delayed rollout of index:${outboundKey.keyId} `);\n                this.addKeyToParticipantWithBackendIdentity(\n                    outboundKey.key,\n                    outboundKey.keyId,\n                    this.ownMembership,\n                    await this.getOwnRtcBackendIdentity(),\n                );\n            }\n        } catch (err) {\n            this.logger?.error(`Failed to rollout key`, err);\n        }\n    }\n\n    private createNewOutboundSession(): OutboundEncryptionSession {\n        const newOutboundKey: OutboundEncryptionSession = {\n            key: this.generateRandomKey(),\n            creationTS: Date.now(),\n            sharedWith: [],\n            keyId: this.nextKeyIndex(),\n        };\n\n        this.logger?.info(`creating new outbound key index:${newOutboundKey.keyId}`);\n        // Set this new key as the current one\n        this.outboundSession = newOutboundKey;\n        return newOutboundKey;\n    }\n\n    private nextKeyIndex(): number {\n        if (this.outboundSession) {\n            return (this.outboundSession!.keyId + 1) % 256;\n        }\n        return 0;\n    }\n\n    private generateRandomKey(): Uint8Array<ArrayBuffer> {\n        const key = new Uint8Array(16);\n        globalThis.crypto.getRandomValues(key);\n        return key;\n    }\n}\n"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAEIA,sBAAsB,QAEnB,wBAAwB;AAG/B,SAASC,YAAY,EAAEC,YAAY,QAAQ,cAAc;AACzD,SAA6DC,kBAAkB,QAAQ,oBAAoB;AAE3G,SAASC,KAAK,QAAQ,aAAa;AAOnC,SAASC,iBAAiB,QAAQ,YAAY;AAC9C,SAASC,qBAAqB,QAAQ,yBAAyB;;AAE/D;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,CAA+B;EAqE5D;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACWC,WAAWA,CACGC,aAA0C,EACnDC,cAAsC,EACtCC,SAAwB;EAChC;EACQC,uBAKC,EACTC,YAAqB,EACrBC,oBAA8F,EAChG;IAAA,KAZmBL,aAA0C,GAA1CA,aAA0C;IAAA,KACnDC,cAAsC,GAAtCA,cAAsC;IAAA,KACtCC,SAAwB,GAAxBA,SAAwB;IAAA,KAExBC,uBAKC,GALDA,uBAKC;IAxFb;IACA;IACA;IAAAG,eAAA,0BAC0B,KAAK;IAAAA,eAAA,sCAEO,KAAK;IAAAA,eAAA;IAG3C;AACJ;AACA;AACA;AACA;IAJIA,eAAA,8BAKuC,IAAIC,GAAG,CAQ5C,CAAC;IAEH;IAAAD,eAAA,0BAC4D,IAAI;IAEhE;AACJ;AACA;IAFIA,eAAA,wCAG8D,IAAI;IAElE;AACJ;AACA;AACA;AACA;IAJIA,eAAA,sBAKsB,IAAI;IAE1B;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;IAPIA,eAAA,mCAQmC,KAAM;IAEzC;AACJ;AACA;AACA;AACA;IAJIA,eAAA,+BAK+B,KAAK;IAEpC;AACJ;AACA;AACA;AACA;AACA;AACA;IANIA,eAAA,oBAOoB,IAAIV,iBAAiB,CAAC,CAAC;IAAAU,eAAA,iBAENE,SAAS;IAAAF,eAAA;IAAAA,eAAA,2CAgEzC,EAAE;IAAAA,eAAA,2BA8F8C,CAACG,UAAU,EAAEC,gBAAgB,EAAEC,KAAK,EAAEC,SAAS,KAAK;MAAA,IAAAC,aAAA;MACrG;MACA;MACA;MACA,IAAI,CAAC,IAAI,CAACC,eAAe,EAAE;QAAA,IAAAC,YAAA;QACvB,CAAAA,YAAA,OAAI,CAACC,MAAM,cAAAD,YAAA,eAAXA,YAAA,CAAaE,IAAI,gCAAAC,MAAA,CACkBT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,gBAAAF,MAAA,CAAaP,KAAK,iCAC7F,CAAC;QACD;MACJ;MACA,CAAAE,aAAA,OAAI,CAACG,MAAM,cAAAH,aAAA,eAAXA,aAAA,CAAaQ,KAAK,gCAAAH,MAAA,CAAgCT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,gBAAAF,MAAA,CAAaP,KAAK,CAAE,CAAC;;MAE/G;MACA,IAAMW,MAAM,GAAG9B,YAAY,CAACkB,gBAAgB,CAAC;MAC7C,IAAMa,uBAAiD,GAAG;QACtDC,GAAG,EAAEF,MAAM;QACXb,UAAU;QACVgB,QAAQ,EAAEd,KAAK;QACfe,UAAU,EAAEd;MAChB,CAAC;MAED,IAAMe,QAAQ,GAAG,IAAI,CAACC,SAAS,CAACC,UAAU,CAACpB,UAAU,EAAEc,uBAAuB,CAAC;MAC/E,IAAI,CAACI,QAAQ,EAAE;QACX,IAAI,CAACG,mBAAmB,CACpBP,uBAAuB,CAACC,GAAG,EAC3BD,uBAAuB,CAACE,QAAQ,EAChCF,uBAAuB,CAACd,UAC5B,CAAC;MACL,CAAC,MAAM;QAAA,IAAAsB,aAAA;QACH,CAAAA,aAAA,OAAI,CAACf,MAAM,cAAAe,aAAA,eAAXA,aAAA,CAAaC,IAAI,qCAAAd,MAAA,CACuBT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,kBAChF,CAAC;MACL;IACJ,CAAC;IAnKG,IAAI,CAACJ,MAAM,GAAGZ,YAAY,aAAZA,YAAY,uBAAZA,YAAY,CAAE6B,QAAQ,sBAAsB,CAAC;IAC3D,IAAI,CAACC,mBAAmB,GAAG7B,oBAAoB,aAApBA,oBAAoB,cAApBA,oBAAoB,GAAIR,qBAAqB;EAC5E;EAEcsC,wBAAwBA,CAAA,EAAoB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MACtD,IAAID,KAAI,CAACE,0BAA0B,EAAE,OAAOF,KAAI,CAACE,0BAA0B;MAE3E,IAAIF,KAAI,CAACG,2BAA2B,EAAE;QAAA,IAAAC,aAAA;QAClC,IAAM;UAAErB,MAAM;UAAEC,QAAQ;UAAEqB;QAAS,CAAC,GAAGL,KAAI,CAACpC,aAAa;QACzD,CAAAwC,aAAA,GAAAJ,KAAI,CAACpB,MAAM,cAAAwB,aAAA,eAAXA,aAAA,CAAaR,IAAI,CACb;QAAA,sCAAAd,MAAA,CACsCC,MAAM,OAAAD,MAAA,CAAIE,QAAQ,OAAAF,MAAA,CAAIuB,QAAQ,kCACxE,CAAC;QACDL,KAAI,CAACE,0BAA0B,SAASF,KAAI,CAACF,mBAAmB,CAACf,MAAM,EAAEC,QAAQ,EAAEqB,QAAQ,CAAC;MAChG,CAAC,MAAM;QACHL,KAAI,CAACE,0BAA0B,MAAApB,MAAA,CAAMkB,KAAI,CAACpC,aAAa,CAACmB,MAAM,OAAAD,MAAA,CAAIkB,KAAI,CAACpC,aAAa,CAACoB,QAAQ,CAAE;MACnG;MACA,OAAOgB,KAAI,CAACE,0BAA0B;IAAC;EAC3C;EAEOI,iBAAiBA,CAAA,EAQtB;IACE,OAAO,IAAInC,GAAG,CAAC,IAAI,CAACoC,mBAAmB,CAAC;EAC5C;EAQQC,qCAAqCA,CAAA,EAAS;IAClD,IAAMC,WAAW,GAAG,IAAI,CAACC,gCAAgC;IACzD,IAAI,CAACA,gCAAgC,GAAG,EAAE;IAC1CD,WAAW,CAACE,OAAO,CAAEC,OAAO,IAAK;MAC7B,IAAI,CAAClB,mBAAmB,CAACkB,OAAO,CAACxB,GAAG,EAAEwB,OAAO,CAACvB,QAAQ,EAAEuB,OAAO,CAACvC,UAAU,CAAC;IAC/E,CAAC,CAAC;EACN;EAEQqB,mBAAmBA,CACvBN,GAA4B,EAC5BC,QAAgB,EAChBhB,UAAuC,EACnC;IACJ,IAAMwC,kBAAkB,GAAG,IAAI,CAAChD,cAAc,CAAC,CAAC;IAChD,IAAMiD,cAAc,GAAGD,kBAAkB,CAACE,IAAI,CACzCC,MAAM,IAAKA,MAAM,CAACjC,MAAM,KAAKV,UAAU,CAACU,MAAM,IAAIiC,MAAM,CAAChC,QAAQ,KAAKX,UAAU,CAACW,QACtF,CAAC;IACD,IAAI,CAAC8B,cAAc,EAAE;MAAA,IAAAG,aAAA;MACjB,CAAAA,aAAA,OAAI,CAACrC,MAAM,cAAAqC,aAAA,eAAXA,aAAA,CAAarB,IAAI,4CAAAd,MAAA,CAC8BT,UAAU,CAACU,MAAM,OAAAD,MAAA,CAAIT,UAAU,CAACW,QAAQ,4BACvF,CAAC;MACD,IAAI,CAAC0B,gCAAgC,CAACQ,IAAI,CAAC;QAAE9B,GAAG;QAAEC,QAAQ;QAAEhB;MAAW,CAAC,CAAC;MACzE;IACJ;IACA,IAAI,CAAC8C,sCAAsC,CAAC/B,GAAG,EAAEC,QAAQ,EAAEhB,UAAU,EAAEyC,cAAc,CAACM,kBAAkB,CAAC;EAC7G;EAEQD,sCAAsCA,CAC1C/B,GAA4B,EAC5BC,QAAgB,EAChBhB,UAAuC,EACvC+C,kBAA0B,EACtB;IACJ,IAAMC,MAAM,GAAGlE,sBAAsB,CAACkB,UAAU,CAAC;IACjD,IAAI,CAAC,IAAI,CAACkC,mBAAmB,CAACe,GAAG,CAACD,MAAM,CAAC,EAAE;MACvC,IAAI,CAACd,mBAAmB,CAACgB,GAAG,CAACF,MAAM,EAAE,EAAE,CAAC;IAC5C;IACA,IAAI,CAACd,mBAAmB,CAACiB,GAAG,CAACH,MAAM,CAAC,CAAEH,IAAI,CAAC;MAAE9B,GAAG;MAAEC,QAAQ;MAAEhB,UAAU;MAAE+C;IAAmB,CAAC,CAAC;IAC7F,IAAI,CAACrD,uBAAuB,CAACqB,GAAG,EAAEC,QAAQ,EAAEhB,UAAU,EAAE+C,kBAAkB,CAAC;EAC/E;EAEOK,IAAIA,CAACC,UAA6D,EAAQ;IAAA,IAAAC,qBAAA,EAAAC,qBAAA,EAAAC,qBAAA,EAAAC,qBAAA,EAAAC,aAAA;IAC7E,IAAI,CAACrD,eAAe,IAAAiD,qBAAA,GAAGD,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEhD,eAAe,cAAAiD,qBAAA,cAAAA,qBAAA,GAAI,IAAI,CAAC,CAAC;IAC5D,IAAI,CAACxB,2BAA2B,IAAAyB,qBAAA,GAAGF,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEM,wBAAwB,cAAAJ,qBAAA,cAAAA,qBAAA,GAAI,KAAK;IAChF,IAAI,CAACK,WAAW,IAAAJ,qBAAA,GAAGH,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEO,WAAW,cAAAJ,qBAAA,cAAAA,qBAAA,GAAI,IAAI;IAClD,IAAI,CAACK,wBAAwB,IAAAJ,qBAAA,GAAGJ,UAAU,aAAVA,UAAU,uBAAVA,UAAU,CAAEQ,wBAAwB,cAAAJ,qBAAA,cAAAA,qBAAA,GAAI,KAAM;IAE9E,IAAI,CAAChE,SAAS,CAACqE,EAAE,CAAC7E,kBAAkB,CAAC8E,YAAY,EAAE,IAAI,CAACC,gBAAgB,CAAC;IACzE,KAAK,IAAI,CAACtC,wBAAwB,CAAC,CAAC,CAAC,CAAC;;IAEtC,CAAAgC,aAAA,OAAI,CAACnD,MAAM,cAAAmD,aAAA,eAAXA,aAAA,CAAanC,IAAI,eAAe,CAAC;IACjC,IAAI,CAAC9B,SAAS,CAACwE,KAAK,CAAC,CAAC;EAC1B;EAEOC,KAAKA,CAAA,EAAS;IACjB,IAAI,CAACzE,SAAS,CAAC0E,GAAG,CAAClF,kBAAkB,CAAC8E,YAAY,EAAE,IAAI,CAACC,gBAAgB,CAAC;IAC1E,IAAI,CAACvE,SAAS,CAAC2E,IAAI,CAAC,CAAC;IACrB,IAAI,CAAClC,mBAAmB,CAACmC,KAAK,CAAC,CAAC;EACpC;;EAEA;AACJ;AACA;AACA;AACA;AACA;EACYC,qBAAqBA,CAAA,EAAS;IAClC;IACA;IACA;IACA,IAAI,CAAC,IAAI,CAACjE,eAAe,EAAE;IAC3B,IAAI,IAAI,CAACkE,6BAA6B,IAAI,IAAI,EAAE;MAAA,IAAAC,aAAA;MAC5C,CAAAA,aAAA,OAAI,CAACjE,MAAM,cAAAiE,aAAA,eAAXA,aAAA,CAAa5D,KAAK,qCAAqC,CAAC;MACxD;MACA,IAAI,CAAC2D,6BAA6B,GAAG,IAAI,CAACE,kBAAkB,CAAC,CAAC,CAACC,IAAI,CAAC,MAAM;QAAA,IAAAC,aAAA;QACtE,CAAAA,aAAA,OAAI,CAACpE,MAAM,cAAAoE,aAAA,eAAXA,aAAA,CAAa/D,KAAK,oBAAoB,CAAC;QACvC,IAAI,CAAC2D,6BAA6B,GAAG,IAAI;QACzC,IAAI,IAAI,CAACK,oBAAoB,EAAE;UAAA,IAAAC,aAAA;UAC3B,CAAAA,aAAA,OAAI,CAACtE,MAAM,cAAAsE,aAAA,eAAXA,aAAA,CAAajE,KAAK,qBAAqB,CAAC;UACxC,IAAI,CAACgE,oBAAoB,GAAG,KAAK;UACjC;UACA,IAAI,CAACN,qBAAqB,CAAC,CAAC;QAChC;MACJ,CAAC,CAAC;IACN,CAAC,MAAM;MAAA,IAAAQ,aAAA;MACH;MACA;MACA,CAAAA,aAAA,OAAI,CAACvE,MAAM,cAAAuE,aAAA,eAAXA,aAAA,CAAalE,KAAK,2EAA2E,CAAC;MAC9F,IAAI,CAACgE,oBAAoB,GAAG,IAAI;IACpC;EACJ;EAqCA;AACJ;AACA;AACA;AACA;EACWG,mBAAmBA,CAAA,EAA8C;IAAA,IAAAC,aAAA;IAAA,IAA7CC,cAAgC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAnF,SAAA,GAAAmF,SAAA,MAAG,EAAE;IAC5D,CAAAF,aAAA,OAAI,CAACzE,MAAM,cAAAyE,aAAA,eAAXA,aAAA,CAAaI,KAAK,sBAAsB,CAAC;;IAEzC;IACA;IACA,IAAI,CAACd,qBAAqB,CAAC,CAAC;IAC5B;IACA,IAAI,CAACnC,qCAAqC,CAAC,CAAC;EAChD;EAEcsC,kBAAkBA,CAAA,EAAkB;IAAA,IAAAY,MAAA;IAAA,OAAAzD,iBAAA;MAAA,IAAA0D,qBAAA,EAAAC,sBAAA;MAC9C,IAAMC,UAAU,GAAGH,MAAI,CAACI,eAAe,IAAI,IAAI;MAC/C,IAAID,UAAU,EAAE;QACZ;QACA,IAAME,QAAQ,GAAG;UACb3E,GAAG,EAAEsE,MAAI,CAACM,iBAAiB,CAAC,CAAC;UAC7B1E,UAAU,EAAE2E,IAAI,CAACC,GAAG,CAAC,CAAC;UACtBC,UAAU,EAAE,EAAE;UACdC,KAAK,EAAE;QACX,CAAC;QACDV,MAAI,CAACI,eAAe,GAAGC,QAAQ;QAC/BL,MAAI,CAACvC,sCAAsC,CACvC4C,QAAQ,CAAC3E,GAAG,EACZ2E,QAAQ,CAACK,KAAK,EACdV,MAAI,CAAC9F,aAAa,QACZ8F,MAAI,CAAC3D,wBAAwB,CAAC,CACxC,CAAC;MACL;MACA;MACA,IAAMsE,WAAoC,GAAGX,MAAI,CAAC7F,cAAc,CAAC,CAAC,CAC7DyG,MAAM,CAAEjG,UAAU,IAAK;QACpB,OAAOA,UAAU,CAACkG,MAAM,IAAInG,SAAS;MACzC,CAAC,CAAC,CACDoG,GAAG,CAAEnG,UAAU,IAAK;QACjB,OAAO;UACHU,MAAM,EAAEV,UAAU,CAACkG,MAAO;UAC1BvF,QAAQ,EAAEX,UAAU,CAACW,QAAQ;UAC7ByF,YAAY,EAAEpG,UAAU,CAACqG,SAAS,CAAC;QACvC,CAAC;MACL,CAAC,CAAC;MAEN,IAAIC,iBAAiB,IAAAhB,qBAAA,IAAAC,sBAAA,GAAGF,MAAI,CAACI,eAAe,cAAAF,sBAAA,uBAApBA,sBAAA,CAAsBO,UAAU,cAAAR,qBAAA,cAAAA,qBAAA,GAAI,EAAE;;MAE9D;MACA;MACAgB,iBAAiB,GAAGA,iBAAiB,CAACL,MAAM,CACvCM,CAAC;MACE;MACA,CAACP,WAAW,CAACQ,IAAI,CACZC,CAAC,IAAKF,CAAC,CAAC7F,MAAM,IAAI+F,CAAC,CAAC/F,MAAM,IAAI6F,CAAC,CAAC5F,QAAQ,IAAI8F,CAAC,CAAC9F,QAAQ,IAAI4F,CAAC,CAACH,YAAY,IAAIK,CAAC,CAACL,YACnF,CACR,CAAC;MAED,IAAMM,OAAO,GAAGJ,iBAAiB,CAACL,MAAM,CACnCM,CAAC,IACE,CAACP,WAAW,CAACQ,IAAI,CACZC,CAAC,IAAKF,CAAC,CAAC7F,MAAM,IAAI+F,CAAC,CAAC/F,MAAM,IAAI6F,CAAC,CAAC5F,QAAQ,IAAI8F,CAAC,CAAC9F,QAAQ,IAAI4F,CAAC,CAACH,YAAY,IAAIK,CAAC,CAACL,YACnF,CACR,CAAC;MACD,IAAMO,SAAS,GAAGX,WAAW,CAACC,MAAM,CAC/BM,CAAC,IACE,CAACD,iBAAiB,CAACE,IAAI,CAClBC,CAAC,IAAKF,CAAC,CAAC7F,MAAM,IAAI+F,CAAC,CAAC/F,MAAM,IAAI6F,CAAC,CAAC5F,QAAQ,IAAI8F,CAAC,CAAC9F,QAAQ,IAAI4F,CAAC,CAACH,YAAY,IAAIK,CAAC,CAACL,YACnF,CACR,CAAC;MAED,IAAIQ,cAAuC,GAAG,EAAE;MAChD,IAAIC,WAAsC;MAC1C,IAAIC,aAAa,GAAG,KAAK;MACzB,IAAIJ,OAAO,CAACvB,MAAM,GAAG,CAAC,EAAE;QACpB;QACA,IAAM4B,cAAc,GAAG1B,MAAI,CAAC2B,wBAAwB,CAAC,CAAC;QACtDF,aAAa,GAAG,IAAI;QACpBF,cAAc,GAAGZ,WAAW;QAC5Ba,WAAW,GAAGE,cAAc;MAChC,CAAC,MAAM,IAAIJ,SAAS,CAACxB,MAAM,GAAG,CAAC,EAAE;QAC7B,IAAMU,GAAG,GAAGD,IAAI,CAACC,GAAG,CAAC,CAAC;QACtB,IAAMoB,MAAM,GAAGpB,GAAG,GAAGR,MAAI,CAACI,eAAe,CAAExE,UAAU;QACrD;QACA,IAAIgG,MAAM,GAAG5B,MAAI,CAACxB,wBAAwB,EAAE;UAAA,IAAAqD,aAAA;UACxC;UACA;UACA,CAAAA,aAAA,GAAA7B,MAAI,CAAC9E,MAAM,cAAA2G,aAAA,eAAXA,aAAA,CAAatG,KAAK,4DAAAH,MAAA,CAA4DwG,MAAM,kBAAe,CAAC;UACpGL,cAAc,GAAGD,SAAS;UAC1BE,WAAW,GAAGxB,MAAI,CAACI,eAAgB;QACvC,CAAC,MAAM;UAAA,IAAA0B,cAAA;UACH;UACA,CAAAA,cAAA,GAAA9B,MAAI,CAAC9E,MAAM,cAAA4G,cAAA,eAAXA,cAAA,CAAavG,KAAK,yCAAyC,CAAC;UAC5D,IAAMmG,eAAc,GAAG1B,MAAI,CAAC2B,wBAAwB,CAAC,CAAC;UACtDF,aAAa,GAAG,IAAI;UACpBF,cAAc,GAAGZ,WAAW;UAC5Ba,WAAW,GAAGE,eAAc;QAChC;MACJ,CAAC,MAAM;QACH;QACA;MACJ;MAEA,IAAI;QAAA,IAAAK,cAAA,EAAAC,cAAA;QACA,CAAAD,cAAA,GAAA/B,MAAI,CAAC9E,MAAM,cAAA6G,cAAA,eAAXA,cAAA,CAAahC,KAAK,iBAAiB,CAAC;QACpC,MAAMC,MAAI,CAAC5F,SAAS,CAAC6H,OAAO,CAACtI,YAAY,CAAC6H,WAAW,CAAC9F,GAAG,CAAC,EAAE8F,WAAW,CAACd,KAAK,EAAEa,cAAc,CAAC;QAC9FC,WAAW,CAACf,UAAU,CAACjD,IAAI,CAAC,GAAG+D,cAAc,CAAC;QAC9C,CAAAS,cAAA,GAAAhC,MAAI,CAAC9E,MAAM,cAAA8G,cAAA,eAAXA,cAAA,CAAajC,KAAK,cAAA3E,MAAA,CACDoG,WAAW,CAACd,KAAK,eAAAtF,MAAA,CAAYoG,WAAW,CAACf,UAAU,CAACK,GAAG,CAAEoB,CAAC,OAAA9G,MAAA,CAAQ8G,CAAC,CAAC7G,MAAM,OAAAD,MAAA,CAAI8G,CAAC,CAAC5G,QAAQ,CAAE,CAAC,CAACyC,IAAI,CAAC,GAAG,CAAC,CACtH,CAAC;QACD,IAAI0D,aAAa,EAAE;UAAA,IAAAU,cAAA,EAAAC,cAAA;UACf;UACA;UACA,CAAAD,cAAA,GAAAnC,MAAI,CAAC9E,MAAM,cAAAiH,cAAA,eAAXA,cAAA,CAAapC,KAAK,0BAAA3E,MAAA,CAA0BoG,WAAW,CAACd,KAAK,QAAK,CAAC;UACnE,MAAM7G,KAAK,CAACmG,MAAI,CAACzB,WAAW,CAAC;UAC7B,CAAA6D,cAAA,GAAApC,MAAI,CAAC9E,MAAM,cAAAkH,cAAA,eAAXA,cAAA,CAAarC,KAAK,gCAAA3E,MAAA,CAAgCoG,WAAW,CAACd,KAAK,MAAG,CAAC;UACvEV,MAAI,CAACvC,sCAAsC,CACvC+D,WAAW,CAAC9F,GAAG,EACf8F,WAAW,CAACd,KAAK,EACjBV,MAAI,CAAC9F,aAAa,QACZ8F,MAAI,CAAC3D,wBAAwB,CAAC,CACxC,CAAC;QACL;MACJ,CAAC,CAAC,OAAOgG,GAAG,EAAE;QAAA,IAAAC,cAAA;QACV,CAAAA,cAAA,GAAAtC,MAAI,CAAC9E,MAAM,cAAAoH,cAAA,eAAXA,cAAA,CAAaC,KAAK,0BAA0BF,GAAG,CAAC;MACpD;IAAC;EACL;EAEQV,wBAAwBA,CAAA,EAA8B;IAAA,IAAAa,cAAA;IAC1D,IAAMd,cAAyC,GAAG;MAC9ChG,GAAG,EAAE,IAAI,CAAC4E,iBAAiB,CAAC,CAAC;MAC7B1E,UAAU,EAAE2E,IAAI,CAACC,GAAG,CAAC,CAAC;MACtBC,UAAU,EAAE,EAAE;MACdC,KAAK,EAAE,IAAI,CAAC+B,YAAY,CAAC;IAC7B,CAAC;IAED,CAAAD,cAAA,OAAI,CAACtH,MAAM,cAAAsH,cAAA,eAAXA,cAAA,CAAatG,IAAI,oCAAAd,MAAA,CAAoCsG,cAAc,CAAChB,KAAK,CAAE,CAAC;IAC5E;IACA,IAAI,CAACN,eAAe,GAAGsB,cAAc;IACrC,OAAOA,cAAc;EACzB;EAEQe,YAAYA,CAAA,EAAW;IAC3B,IAAI,IAAI,CAACrC,eAAe,EAAE;MACtB,OAAO,CAAC,IAAI,CAACA,eAAe,CAAEM,KAAK,GAAG,CAAC,IAAI,GAAG;IAClD;IACA,OAAO,CAAC;EACZ;EAEQJ,iBAAiBA,CAAA,EAA4B;IACjD,IAAM5E,GAAG,GAAG,IAAIgH,UAAU,CAAC,EAAE,CAAC;IAC9BC,UAAU,CAACC,MAAM,CAACC,eAAe,CAACnH,GAAG,CAAC;IACtC,OAAOA,GAAG;EACd;AACJ","ignoreList":[]}

package/lib/matrixrtc/index.d.ts

@@ -3,6 +3,7 @@ export * from "./LivekitTransport.ts";
 export * from "./MatrixRTCSession.ts";
 export * from "./MatrixRTCSessionManager.ts";
 export type * from "./types.ts";
+export { type SessionMembershipData, type RtcMembershipData } from "./membershipData/index.ts";
 export { Status, parseCallNotificationContent, isMyMembership } from "./types.ts";
 export { MembershipManagerEvent } from "./IMembershipManager.ts";
 //# sourceMappingURL=index.d.ts.map

package/lib/matrixrtc/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/matrixrtc/index.ts"],"names":[],"mappings":"AAgBA,cAAc,qBAAqB,CAAC;AACpC,cAAc,uBAAuB,CAAC;AACtC,cAAc,uBAAuB,CAAC;AACtC,cAAc,8BAA8B,CAAC;AAC7C,mBAAmB,YAAY,CAAC;AAChC,OAAO,EAAE,MAAM,EAAE,4BAA4B,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAClF,OAAO,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/matrixrtc/index.ts"],"names":[],"mappings":"AAgBA,cAAc,qBAAqB,CAAC;AACpC,cAAc,uBAAuB,CAAC;AACtC,cAAc,uBAAuB,CAAC;AACtC,cAAc,8BAA8B,CAAC;AAC7C,mBAAmB,YAAY,CAAC;AAChC,OAAO,EAAE,KAAK,qBAAqB,EAAE,KAAK,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAC/F,OAAO,EAAE,MAAM,EAAE,4BAA4B,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAClF,OAAO,EAAE,sBAAsB,EAAE,MAAM,yBAAyB,CAAC"}

package/lib/matrixrtc/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":["Status","parseCallNotificationContent","isMyMembership","MembershipManagerEvent"],"sources":["../../src/matrixrtc/index.ts"],"sourcesContent":["/*\nCopyright 2024 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nexport * from \"./CallMembership.ts\";\nexport * from \"./LivekitTransport.ts\";\nexport * from \"./MatrixRTCSession.ts\";\nexport * from \"./MatrixRTCSessionManager.ts\";\nexport type * from \"./types.ts\";\nexport { Status, parseCallNotificationContent, isMyMembership } from \"./types.ts\";\nexport { MembershipManagerEvent } from \"./IMembershipManager.ts\";\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,qBAAqB;AACnC,cAAc,uBAAuB;AACrC,cAAc,uBAAuB;AACrC,cAAc,8BAA8B;AAE5C,SAASA,MAAM,EAAEC,4BAA4B,EAAEC,cAAc,QAAQ,YAAY;AACjF,SAASC,sBAAsB,QAAQ,yBAAyB","ignoreList":[]}
+{"version":3,"file":"index.js","names":["Status","parseCallNotificationContent","isMyMembership","MembershipManagerEvent"],"sources":["../../src/matrixrtc/index.ts"],"sourcesContent":["/*\nCopyright 2024 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nexport * from \"./CallMembership.ts\";\nexport * from \"./LivekitTransport.ts\";\nexport * from \"./MatrixRTCSession.ts\";\nexport * from \"./MatrixRTCSessionManager.ts\";\nexport type * from \"./types.ts\";\nexport { type SessionMembershipData, type RtcMembershipData } from \"./membershipData/index.ts\";\nexport { Status, parseCallNotificationContent, isMyMembership } from \"./types.ts\";\nexport { MembershipManagerEvent } from \"./IMembershipManager.ts\";\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,qBAAqB;AACnC,cAAc,uBAAuB;AACrC,cAAc,uBAAuB;AACrC,cAAc,8BAA8B;AAG5C,SAASA,MAAM,EAAEC,4BAA4B,EAAEC,cAAc,QAAQ,YAAY;AACjF,SAASC,sBAAsB,QAAQ,yBAAyB","ignoreList":[]}

package/lib/matrixrtc/membershipData/common.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Thrown when an event is not valid for use with MatrixRTC.
+ */
+export declare class MatrixRTCMembershipParseError extends AggregateError {
+    readonly type: string;
+    constructor(type: string, errors: string[]);
+}
+//# sourceMappingURL=common.d.ts.map

package/lib/matrixrtc/membershipData/common.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"common.d.ts","sourceRoot":"","sources":["../../../src/matrixrtc/membershipData/common.ts"],"names":[],"mappings":"AAgBA;;GAEG;AACH,qBAAa,6BAA8B,SAAQ,cAAc;aAEzC,IAAI,EAAE,MAAM;gBAAZ,IAAI,EAAE,MAAM,EAC5B,MAAM,EAAE,MAAM,EAAE;CAIvB"}

package/lib/matrixrtc/membershipData/common.js

@@ -0,0 +1,26 @@
+/*
+Copyright 2026 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Thrown when an event is not valid for use with MatrixRTC.
+ */
+export class MatrixRTCMembershipParseError extends AggregateError {
+  constructor(type, errors) {
+    super(errors, "Does not match ".concat(type, ":\n").concat(errors.join("\n")));
+    this.type = type;
+  }
+}
+//# sourceMappingURL=common.js.map

package/lib/matrixrtc/membershipData/common.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"common.js","names":["MatrixRTCMembershipParseError","AggregateError","constructor","type","errors","concat","join"],"sources":["../../../src/matrixrtc/membershipData/common.ts"],"sourcesContent":["/*\nCopyright 2026 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\n/**\n * Thrown when an event is not valid for use with MatrixRTC.\n */\nexport class MatrixRTCMembershipParseError extends AggregateError {\n    public constructor(\n        public readonly type: string,\n        errors: string[],\n    ) {\n        super(errors, `Does not match ${type}:\\n${errors.join(\"\\n\")}`);\n    }\n}\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA;AACA;AACA;AACA,OAAO,MAAMA,6BAA6B,SAASC,cAAc,CAAC;EACvDC,WAAWA,CACEC,IAAY,EAC5BC,MAAgB,EAClB;IACE,KAAK,CAACA,MAAM,oBAAAC,MAAA,CAAoBF,IAAI,SAAAE,MAAA,CAAMD,MAAM,CAACE,IAAI,CAAC,IAAI,CAAC,CAAE,CAAC;IAAC,KAH/CH,IAAY,GAAZA,IAAY;EAIhC;AACJ","ignoreList":[]}

package/lib/matrixrtc/membershipData/index.d.ts

@@ -0,0 +1,4 @@
+export { type SessionMembershipData, checkSessionsMembershipData } from "./session.ts";
+export { type RtcMembershipData, computeRtcIdentityRaw, checkRtcMembershipData } from "./rtc.ts";
+export { MatrixRTCMembershipParseError } from "./common.ts";
+//# sourceMappingURL=index.d.ts.map

package/lib/matrixrtc/membershipData/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/matrixrtc/membershipData/index.ts"],"names":[],"mappings":"AAgBA,OAAO,EAAE,KAAK,qBAAqB,EAAE,2BAA2B,EAAE,MAAM,cAAc,CAAC;AACvF,OAAO,EAAE,KAAK,iBAAiB,EAAE,qBAAqB,EAAE,sBAAsB,EAAE,MAAM,UAAU,CAAC;AACjG,OAAO,EAAE,6BAA6B,EAAE,MAAM,aAAa,CAAC"}

package/lib/matrixrtc/membershipData/index.js

@@ -0,0 +1,20 @@
+/*
+Copyright 2026 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+export { checkSessionsMembershipData } from "./session.js";
+export { computeRtcIdentityRaw, checkRtcMembershipData } from "./rtc.js";
+export { MatrixRTCMembershipParseError } from "./common.js";
+//# sourceMappingURL=index.js.map

package/lib/matrixrtc/membershipData/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","names":["checkSessionsMembershipData","computeRtcIdentityRaw","checkRtcMembershipData","MatrixRTCMembershipParseError"],"sources":["../../../src/matrixrtc/membershipData/index.ts"],"sourcesContent":["/*\nCopyright 2026 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nexport { type SessionMembershipData, checkSessionsMembershipData } from \"./session.ts\";\nexport { type RtcMembershipData, computeRtcIdentityRaw, checkRtcMembershipData } from \"./rtc.ts\";\nexport { MatrixRTCMembershipParseError } from \"./common.ts\";\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAAqCA,2BAA2B,QAAQ,cAAc;AACtF,SAAiCC,qBAAqB,EAAEC,sBAAsB,QAAQ,UAAU;AAChG,SAASC,6BAA6B,QAAQ,aAAa","ignoreList":[]}

package/lib/matrixrtc/membershipData/rtc.d.ts

@@ -0,0 +1,33 @@
+import type { IContent } from "../../models/event.ts";
+import type { RelationType } from "../../types.ts";
+import { type RtcSlotEventContent, type Transport } from "../types.ts";
+/**
+ * Represents the current form of MSC4143, which uses sticky events to store membership.
+ */
+export interface RtcMembershipData {
+    "slot_id": string;
+    "member": {
+        user_id: string;
+        device_id: string;
+        id: string;
+    };
+    "m.relates_to"?: {
+        event_id: string;
+        rel_type: RelationType.Reference;
+    };
+    "application": RtcSlotEventContent["application"];
+    "rtc_transports": Transport[];
+    "versions": string[];
+    "msc4354_sticky_key"?: string;
+    "sticky_key"?: string;
+}
+/**
+ * Validates that `data` matches the format expected by MSC4143.
+ * @param data The event content.
+ * @param sender The sender of the event.
+ * @returns true if `data` is valid RtcMembershipData
+ * @throws {MatrixRTCMembershipParseError} if the content is not valid
+ */
+export declare const checkRtcMembershipData: (data: IContent, sender: string) => data is RtcMembershipData;
+export declare function computeRtcIdentityRaw(userId: string, deviceId: string, memberId: string): Promise<string>;
+//# sourceMappingURL=rtc.d.ts.map

package/lib/matrixrtc/membershipData/rtc.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rtc.d.ts","sourceRoot":"","sources":["../../../src/matrixrtc/membershipData/rtc.ts"],"names":[],"mappings":"AAiBA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,EAAE,KAAK,mBAAmB,EAAE,KAAK,SAAS,EAAE,MAAM,aAAa,CAAC;AAMvE;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE;QACN,OAAO,EAAE,MAAM,CAAC;QAChB,SAAS,EAAE,MAAM,CAAC;QAClB,EAAE,EAAE,MAAM,CAAC;KACd,CAAC;IACF,cAAc,CAAC,EAAE;QACb,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,YAAY,CAAC,SAAS,CAAC;KACpC,CAAC;IACF,aAAa,EAAE,mBAAmB,CAAC,aAAa,CAAC,CAAC;IAClD,gBAAgB,EAAE,SAAS,EAAE,CAAC;IAC9B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,YAAY,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,GAAI,MAAM,QAAQ,EAAE,QAAQ,MAAM,KAAG,IAAI,IAAI,iBA+F/E,CAAC;AAEF,wBAAsB,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAK/G"}

package/lib/matrixrtc/membershipData/rtc.js

@@ -0,0 +1,137 @@
+import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
+/*
+Copyright 2026 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+import { MXID_PATTERN } from "../../models/room-member.js";
+import { MatrixRTCMembershipParseError } from "./common.js";
+import { sha256 } from "../../digest.js";
+import { encodeUnpaddedBase64Url } from "../../base64.js";
+import { slotIdToDescription } from "../utils.js";
+
+/**
+ * Represents the current form of MSC4143, which uses sticky events to store membership.
+ */
+
+/**
+ * Validates that `data` matches the format expected by MSC4143.
+ * @param data The event content.
+ * @param sender The sender of the event.
+ * @returns true if `data` is valid RtcMembershipData
+ * @throws {MatrixRTCMembershipParseError} if the content is not valid
+ */
+export var checkRtcMembershipData = (data, sender) => {
+  var _data$application, _data$sticky_key;
+  var errors = [];
+  var prefix = " - ";
+  var expectedSlotPrefix = "".concat(data === null || data === void 0 || (_data$application = data.application) === null || _data$application === void 0 ? void 0 : _data$application.type, "#");
+
+  // required fields
+  if (typeof data.slot_id !== "string") {
+    errors.push(prefix + "slot_id must be string");
+  } else if (!data.slot_id.startsWith(expectedSlotPrefix)) {
+    errors.push(prefix + "slot_id must start with ".concat(expectedSlotPrefix));
+  } else {
+    try {
+      slotIdToDescription(data.slot_id);
+    } catch (ex) {
+      errors.push(prefix + "slot_id was badly formed".concat(ex instanceof Error ? ": ".concat(ex.message) : ""));
+    }
+  }
+  if (typeof data.member !== "object" || data.member === null) {
+    errors.push(prefix + "member must be an object");
+  } else {
+    if (typeof data.member.user_id !== "string") {
+      errors.push(prefix + "member.user_id must be string");
+    } else if (!MXID_PATTERN.test(data.member.user_id)) {
+      errors.push(prefix + "member.user_id must be a valid mxid");
+    }
+    // This is not what the spec enforces but there currently are no rules what power levels are required to
+    // send a m.rtc.member event for a other user. So we add this check for simplicity and to avoid possible attacks until there
+    // is a proper definition when this is allowed.
+    else if (data.member.user_id !== sender) {
+      errors.push(prefix + "member.user_id must match the sender");
+    }
+    if (typeof data.member.device_id !== "string") {
+      errors.push(prefix + "member.device_id must be string");
+    }
+    if (typeof data.member.id !== "string") errors.push(prefix + "member.id must be string");
+  }
+  if (typeof data.application !== "object" || data.application === null) {
+    errors.push(prefix + "application must be an object");
+  } else {
+    if (typeof data.application.type !== "string") {
+      errors.push(prefix + "application.type must be a string");
+    } else {
+      if (data.application.type.includes("#")) errors.push(prefix + 'application.type must not include "#"');
+    }
+  }
+  if (data.rtc_transports === undefined || !Array.isArray(data.rtc_transports)) {
+    errors.push(prefix + "rtc_transports must be an array");
+  } else {
+    // validate that each transport has at least a string 'type'
+    for (var t of data.rtc_transports) {
+      if (typeof t !== "object" || t === null || typeof t.type !== "string") {
+        errors.push(prefix + "rtc_transports entries must be objects with a string type");
+        break;
+      }
+    }
+  }
+  if (data.versions === undefined || !Array.isArray(data.versions)) {
+    errors.push(prefix + "versions must be an array");
+  } else if (!data.versions.every(v => typeof v === "string")) {
+    errors.push(prefix + "versions must be an array of strings");
+  }
+
+  // optional fields
+  if (((_data$sticky_key = data.sticky_key) !== null && _data$sticky_key !== void 0 ? _data$sticky_key : data.msc4354_sticky_key) === undefined) {
+    errors.push(prefix + "sticky_key or msc4354_sticky_key must be a defined");
+  }
+  if (data.sticky_key !== undefined && typeof data.sticky_key !== "string") {
+    errors.push(prefix + "sticky_key must be a string");
+  }
+  if (data.msc4354_sticky_key !== undefined && typeof data.msc4354_sticky_key !== "string") {
+    errors.push(prefix + "msc4354_sticky_key must be a string");
+  }
+  if (data.sticky_key !== undefined && data.msc4354_sticky_key !== undefined && data.sticky_key !== data.msc4354_sticky_key) {
+    errors.push(prefix + "sticky_key and msc4354_sticky_key must be equal if both are defined");
+  }
+  if (data["m.relates_to"] !== undefined) {
+    var rel = data["m.relates_to"];
+    if (typeof rel !== "object" || rel === null) {
+      errors.push(prefix + "m.relates_to must be an object if provided");
+    } else {
+      if (typeof rel.event_id !== "string") errors.push(prefix + "m.relates_to.event_id must be a string");
+      if (rel.rel_type !== "m.reference") errors.push(prefix + "m.relates_to.rel_type must be m.reference");
+    }
+  }
+  if (errors.length) {
+    throw new MatrixRTCMembershipParseError("RtcMembership", errors);
+  }
+  return true;
+};
+export function computeRtcIdentityRaw(_x, _x2, _x3) {
+  return _computeRtcIdentityRaw.apply(this, arguments);
+}
+function _computeRtcIdentityRaw() {
+  _computeRtcIdentityRaw = _asyncToGenerator(function* (userId, deviceId, memberId) {
+    var hashInput = "".concat(userId, "|").concat(deviceId, "|").concat(memberId);
+    var hashBuffer = yield sha256(hashInput);
+    var hashedString = encodeUnpaddedBase64Url(hashBuffer);
+    return hashedString;
+  });
+  return _computeRtcIdentityRaw.apply(this, arguments);
+}
+//# sourceMappingURL=rtc.js.map

package/lib/matrixrtc/membershipData/rtc.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rtc.js","names":["MXID_PATTERN","MatrixRTCMembershipParseError","sha256","encodeUnpaddedBase64Url","slotIdToDescription","checkRtcMembershipData","data","sender","_data$application","_data$sticky_key","errors","prefix","expectedSlotPrefix","concat","application","type","slot_id","push","startsWith","ex","Error","message","member","user_id","test","device_id","id","includes","rtc_transports","undefined","Array","isArray","t","versions","every","v","sticky_key","msc4354_sticky_key","rel","event_id","rel_type","length","computeRtcIdentityRaw","_x","_x2","_x3","_computeRtcIdentityRaw","apply","arguments","_asyncToGenerator","userId","deviceId","memberId","hashInput","hashBuffer","hashedString"],"sources":["../../../src/matrixrtc/membershipData/rtc.ts"],"sourcesContent":["/*\nCopyright 2026 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nimport { MXID_PATTERN } from \"../../models/room-member.ts\";\nimport type { IContent } from \"../../models/event.ts\";\nimport type { RelationType } from \"../../types.ts\";\nimport { type RtcSlotEventContent, type Transport } from \"../types.ts\";\nimport { MatrixRTCMembershipParseError } from \"./common.ts\";\nimport { sha256 } from \"../../digest.ts\";\nimport { encodeUnpaddedBase64Url } from \"../../base64.ts\";\nimport { slotIdToDescription } from \"../utils.ts\";\n\n/**\n * Represents the current form of MSC4143, which uses sticky events to store membership.\n */\nexport interface RtcMembershipData {\n    \"slot_id\": string;\n    \"member\": {\n        user_id: string;\n        device_id: string;\n        id: string;\n    };\n    \"m.relates_to\"?: {\n        event_id: string;\n        rel_type: RelationType.Reference;\n    };\n    \"application\": RtcSlotEventContent[\"application\"];\n    \"rtc_transports\": Transport[];\n    \"versions\": string[];\n    \"msc4354_sticky_key\"?: string;\n    \"sticky_key\"?: string;\n}\n\n/**\n * Validates that `data` matches the format expected by MSC4143.\n * @param data The event content.\n * @param sender The sender of the event.\n * @returns true if `data` is valid RtcMembershipData\n * @throws {MatrixRTCMembershipParseError} if the content is not valid\n */\nexport const checkRtcMembershipData = (data: IContent, sender: string): data is RtcMembershipData => {\n    const errors: string[] = [];\n    const prefix = \" - \";\n    const expectedSlotPrefix = `${data?.application?.type}#`;\n\n    // required fields\n    if (typeof data.slot_id !== \"string\") {\n        errors.push(prefix + \"slot_id must be string\");\n    } else if (!data.slot_id.startsWith(expectedSlotPrefix)) {\n        errors.push(prefix + `slot_id must start with ${expectedSlotPrefix}`);\n    } else {\n        try {\n            slotIdToDescription(data.slot_id);\n        } catch (ex) {\n            errors.push(prefix + `slot_id was badly formed${ex instanceof Error ? `: ${ex.message}` : \"\"}`);\n        }\n    }\n\n    if (typeof data.member !== \"object\" || data.member === null) {\n        errors.push(prefix + \"member must be an object\");\n    } else {\n        if (typeof data.member.user_id !== \"string\") {\n            errors.push(prefix + \"member.user_id must be string\");\n        } else if (!MXID_PATTERN.test(data.member.user_id)) {\n            errors.push(prefix + \"member.user_id must be a valid mxid\");\n        }\n        // This is not what the spec enforces but there currently are no rules what power levels are required to\n        // send a m.rtc.member event for a other user. So we add this check for simplicity and to avoid possible attacks until there\n        // is a proper definition when this is allowed.\n        else if (data.member.user_id !== sender) {\n            errors.push(prefix + \"member.user_id must match the sender\");\n        }\n        if (typeof data.member.device_id !== \"string\") {\n            errors.push(prefix + \"member.device_id must be string\");\n        }\n        if (typeof data.member.id !== \"string\") errors.push(prefix + \"member.id must be string\");\n    }\n    if (typeof data.application !== \"object\" || data.application === null) {\n        errors.push(prefix + \"application must be an object\");\n    } else {\n        if (typeof data.application.type !== \"string\") {\n            errors.push(prefix + \"application.type must be a string\");\n        } else {\n            if (data.application.type.includes(\"#\")) errors.push(prefix + 'application.type must not include \"#\"');\n        }\n    }\n    if (data.rtc_transports === undefined || !Array.isArray(data.rtc_transports)) {\n        errors.push(prefix + \"rtc_transports must be an array\");\n    } else {\n        // validate that each transport has at least a string 'type'\n        for (const t of data.rtc_transports) {\n            if (typeof t !== \"object\" || t === null || typeof (t as any).type !== \"string\") {\n                errors.push(prefix + \"rtc_transports entries must be objects with a string type\");\n                break;\n            }\n        }\n    }\n    if (data.versions === undefined || !Array.isArray(data.versions)) {\n        errors.push(prefix + \"versions must be an array\");\n    } else if (!data.versions.every((v) => typeof v === \"string\")) {\n        errors.push(prefix + \"versions must be an array of strings\");\n    }\n\n    // optional fields\n    if ((data.sticky_key ?? data.msc4354_sticky_key) === undefined) {\n        errors.push(prefix + \"sticky_key or msc4354_sticky_key must be a defined\");\n    }\n    if (data.sticky_key !== undefined && typeof data.sticky_key !== \"string\") {\n        errors.push(prefix + \"sticky_key must be a string\");\n    }\n    if (data.msc4354_sticky_key !== undefined && typeof data.msc4354_sticky_key !== \"string\") {\n        errors.push(prefix + \"msc4354_sticky_key must be a string\");\n    }\n    if (\n        data.sticky_key !== undefined &&\n        data.msc4354_sticky_key !== undefined &&\n        data.sticky_key !== data.msc4354_sticky_key\n    ) {\n        errors.push(prefix + \"sticky_key and msc4354_sticky_key must be equal if both are defined\");\n    }\n    if (data[\"m.relates_to\"] !== undefined) {\n        const rel = data[\"m.relates_to\"] as RtcMembershipData[\"m.relates_to\"];\n        if (typeof rel !== \"object\" || rel === null) {\n            errors.push(prefix + \"m.relates_to must be an object if provided\");\n        } else {\n            if (typeof rel.event_id !== \"string\") errors.push(prefix + \"m.relates_to.event_id must be a string\");\n            if (rel.rel_type !== \"m.reference\") errors.push(prefix + \"m.relates_to.rel_type must be m.reference\");\n        }\n    }\n\n    if (errors.length) {\n        throw new MatrixRTCMembershipParseError(\"RtcMembership\", errors);\n    }\n\n    return true;\n};\n\nexport async function computeRtcIdentityRaw(userId: string, deviceId: string, memberId: string): Promise<string> {\n    const hashInput = `${userId}|${deviceId}|${memberId}`;\n    const hashBuffer = await sha256(hashInput);\n    const hashedString = encodeUnpaddedBase64Url(hashBuffer);\n    return hashedString;\n}\n"],"mappings":";AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAASA,YAAY,QAAQ,6BAA6B;AAI1D,SAASC,6BAA6B,QAAQ,aAAa;AAC3D,SAASC,MAAM,QAAQ,iBAAiB;AACxC,SAASC,uBAAuB,QAAQ,iBAAiB;AACzD,SAASC,mBAAmB,QAAQ,aAAa;;AAEjD;AACA;AACA;;AAmBA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,IAAMC,sBAAsB,GAAGA,CAACC,IAAc,EAAEC,MAAc,KAAgC;EAAA,IAAAC,iBAAA,EAAAC,gBAAA;EACjG,IAAMC,MAAgB,GAAG,EAAE;EAC3B,IAAMC,MAAM,GAAG,KAAK;EACpB,IAAMC,kBAAkB,MAAAC,MAAA,CAAMP,IAAI,aAAJA,IAAI,gBAAAE,iBAAA,GAAJF,IAAI,CAAEQ,WAAW,cAAAN,iBAAA,uBAAjBA,iBAAA,CAAmBO,IAAI,MAAG;;EAExD;EACA,IAAI,OAAOT,IAAI,CAACU,OAAO,KAAK,QAAQ,EAAE;IAClCN,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,wBAAwB,CAAC;EAClD,CAAC,MAAM,IAAI,CAACL,IAAI,CAACU,OAAO,CAACE,UAAU,CAACN,kBAAkB,CAAC,EAAE;IACrDF,MAAM,CAACO,IAAI,CAACN,MAAM,8BAAAE,MAAA,CAA8BD,kBAAkB,CAAE,CAAC;EACzE,CAAC,MAAM;IACH,IAAI;MACAR,mBAAmB,CAACE,IAAI,CAACU,OAAO,CAAC;IACrC,CAAC,CAAC,OAAOG,EAAE,EAAE;MACTT,MAAM,CAACO,IAAI,CAACN,MAAM,8BAAAE,MAAA,CAA8BM,EAAE,YAAYC,KAAK,QAAAP,MAAA,CAAQM,EAAE,CAACE,OAAO,IAAK,EAAE,CAAE,CAAC;IACnG;EACJ;EAEA,IAAI,OAAOf,IAAI,CAACgB,MAAM,KAAK,QAAQ,IAAIhB,IAAI,CAACgB,MAAM,KAAK,IAAI,EAAE;IACzDZ,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,0BAA0B,CAAC;EACpD,CAAC,MAAM;IACH,IAAI,OAAOL,IAAI,CAACgB,MAAM,CAACC,OAAO,KAAK,QAAQ,EAAE;MACzCb,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,+BAA+B,CAAC;IACzD,CAAC,MAAM,IAAI,CAACX,YAAY,CAACwB,IAAI,CAAClB,IAAI,CAACgB,MAAM,CAACC,OAAO,CAAC,EAAE;MAChDb,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,qCAAqC,CAAC;IAC/D;IACA;IACA;IACA;IAAA,KACK,IAAIL,IAAI,CAACgB,MAAM,CAACC,OAAO,KAAKhB,MAAM,EAAE;MACrCG,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,sCAAsC,CAAC;IAChE;IACA,IAAI,OAAOL,IAAI,CAACgB,MAAM,CAACG,SAAS,KAAK,QAAQ,EAAE;MAC3Cf,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,iCAAiC,CAAC;IAC3D;IACA,IAAI,OAAOL,IAAI,CAACgB,MAAM,CAACI,EAAE,KAAK,QAAQ,EAAEhB,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,0BAA0B,CAAC;EAC5F;EACA,IAAI,OAAOL,IAAI,CAACQ,WAAW,KAAK,QAAQ,IAAIR,IAAI,CAACQ,WAAW,KAAK,IAAI,EAAE;IACnEJ,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,+BAA+B,CAAC;EACzD,CAAC,MAAM;IACH,IAAI,OAAOL,IAAI,CAACQ,WAAW,CAACC,IAAI,KAAK,QAAQ,EAAE;MAC3CL,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,mCAAmC,CAAC;IAC7D,CAAC,MAAM;MACH,IAAIL,IAAI,CAACQ,WAAW,CAACC,IAAI,CAACY,QAAQ,CAAC,GAAG,CAAC,EAAEjB,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,uCAAuC,CAAC;IAC1G;EACJ;EACA,IAAIL,IAAI,CAACsB,cAAc,KAAKC,SAAS,IAAI,CAACC,KAAK,CAACC,OAAO,CAACzB,IAAI,CAACsB,cAAc,CAAC,EAAE;IAC1ElB,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,iCAAiC,CAAC;EAC3D,CAAC,MAAM;IACH;IACA,KAAK,IAAMqB,CAAC,IAAI1B,IAAI,CAACsB,cAAc,EAAE;MACjC,IAAI,OAAOI,CAAC,KAAK,QAAQ,IAAIA,CAAC,KAAK,IAAI,IAAI,OAAQA,CAAC,CAASjB,IAAI,KAAK,QAAQ,EAAE;QAC5EL,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,2DAA2D,CAAC;QACjF;MACJ;IACJ;EACJ;EACA,IAAIL,IAAI,CAAC2B,QAAQ,KAAKJ,SAAS,IAAI,CAACC,KAAK,CAACC,OAAO,CAACzB,IAAI,CAAC2B,QAAQ,CAAC,EAAE;IAC9DvB,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,2BAA2B,CAAC;EACrD,CAAC,MAAM,IAAI,CAACL,IAAI,CAAC2B,QAAQ,CAACC,KAAK,CAAEC,CAAC,IAAK,OAAOA,CAAC,KAAK,QAAQ,CAAC,EAAE;IAC3DzB,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,sCAAsC,CAAC;EAChE;;EAEA;EACA,IAAI,EAAAF,gBAAA,GAACH,IAAI,CAAC8B,UAAU,cAAA3B,gBAAA,cAAAA,gBAAA,GAAIH,IAAI,CAAC+B,kBAAkB,MAAMR,SAAS,EAAE;IAC5DnB,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,oDAAoD,CAAC;EAC9E;EACA,IAAIL,IAAI,CAAC8B,UAAU,KAAKP,SAAS,IAAI,OAAOvB,IAAI,CAAC8B,UAAU,KAAK,QAAQ,EAAE;IACtE1B,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,6BAA6B,CAAC;EACvD;EACA,IAAIL,IAAI,CAAC+B,kBAAkB,KAAKR,SAAS,IAAI,OAAOvB,IAAI,CAAC+B,kBAAkB,KAAK,QAAQ,EAAE;IACtF3B,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,qCAAqC,CAAC;EAC/D;EACA,IACIL,IAAI,CAAC8B,UAAU,KAAKP,SAAS,IAC7BvB,IAAI,CAAC+B,kBAAkB,KAAKR,SAAS,IACrCvB,IAAI,CAAC8B,UAAU,KAAK9B,IAAI,CAAC+B,kBAAkB,EAC7C;IACE3B,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,qEAAqE,CAAC;EAC/F;EACA,IAAIL,IAAI,CAAC,cAAc,CAAC,KAAKuB,SAAS,EAAE;IACpC,IAAMS,GAAG,GAAGhC,IAAI,CAAC,cAAc,CAAsC;IACrE,IAAI,OAAOgC,GAAG,KAAK,QAAQ,IAAIA,GAAG,KAAK,IAAI,EAAE;MACzC5B,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,4CAA4C,CAAC;IACtE,CAAC,MAAM;MACH,IAAI,OAAO2B,GAAG,CAACC,QAAQ,KAAK,QAAQ,EAAE7B,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,wCAAwC,CAAC;MACpG,IAAI2B,GAAG,CAACE,QAAQ,KAAK,aAAa,EAAE9B,MAAM,CAACO,IAAI,CAACN,MAAM,GAAG,2CAA2C,CAAC;IACzG;EACJ;EAEA,IAAID,MAAM,CAAC+B,MAAM,EAAE;IACf,MAAM,IAAIxC,6BAA6B,CAAC,eAAe,EAAES,MAAM,CAAC;EACpE;EAEA,OAAO,IAAI;AACf,CAAC;AAED,gBAAsBgC,qBAAqBA,CAAAC,EAAA,EAAAC,GAAA,EAAAC,GAAA;EAAA,OAAAC,sBAAA,CAAAC,KAAA,OAAAC,SAAA;AAAA;AAK1C,SAAAF,uBAAA;EAAAA,sBAAA,GAAAG,iBAAA,CALM,WAAqCC,MAAc,EAAEC,QAAgB,EAAEC,QAAgB,EAAmB;IAC7G,IAAMC,SAAS,MAAAxC,MAAA,CAAMqC,MAAM,OAAArC,MAAA,CAAIsC,QAAQ,OAAAtC,MAAA,CAAIuC,QAAQ,CAAE;IACrD,IAAME,UAAU,SAASpD,MAAM,CAACmD,SAAS,CAAC;IAC1C,IAAME,YAAY,GAAGpD,uBAAuB,CAACmD,UAAU,CAAC;IACxD,OAAOC,YAAY;EACvB,CAAC;EAAA,OAAAT,sBAAA,CAAAC,KAAA,OAAAC,SAAA;AAAA","ignoreList":[]}

package/lib/matrixrtc/membershipData/session.d.ts

@@ -0,0 +1,77 @@
+import { type IContent } from "../../matrix.ts";
+import { type RTCCallIntent, type Transport } from "../types.ts";
+/**
+ * (MatrixRTC) session membership data.
+ * This represents the *OLD* form of MSC4143, which uses state events to store membership.
+ * Represents the `session` in the memberships section of an m.call.member event as it is on the wire.
+ **/
+export type SessionMembershipData = {
+    /**
+     * The RTC application defines the type of the RTC session.
+     */
+    "application": string;
+    /**
+     * The id of this session.
+     * A session can never span over multiple rooms so this id is to distinguish between
+     * multiple session in one room. A room wide session that is not associated with a user,
+     * and therefore immune to creation race conflicts, uses the `call_id: ""`.
+     */
+    "call_id": string;
+    /**
+     * The Matrix device ID of this session. A single user can have multiple sessions on different devices.
+     */
+    "device_id": string;
+    /**
+     * The focus selection system this user/membership is using.
+     * NOTE: This is still included for legacy reasons, but not consumed by the SDK.
+     */
+    "focus_active": {
+        type: "livekit" | string;
+        focus_selection: "oldest_membership" | "multi_sfu" | string;
+    };
+    /**
+     * A list of possible foci this user knows about. One of them might be used based on the focus_active
+     * selection system.
+     */
+    "foci_preferred": Transport[];
+    /**
+     * Optional field that contains the creation of the session. If it is undefined the creation
+     * is the `origin_server_ts` of the event itself. For updates to the event this property tracks
+     * the `origin_server_ts` of the initial join event.
+     *  - If it is undefined it can be interpreted as a "Join".
+     *  - If it is defined it can be interpreted as an "Update"
+     */
+    "created_ts"?: number;
+    /**
+     * If the `application` = `"m.call"` this defines if it is a room or user owned call.
+     * There can always be one room scoped call but multiple user owned calls (breakout sessions)
+     */
+    "scope"?: "m.room" | "m.user";
+    /**
+     * Optionally we allow to define a delta to the `created_ts` that defines when the event is expired/invalid.
+     * This should be set to multiple hours. The only reason it exist is to deal with failed delayed events.
+     * (for example caused by a homeserver crashes)
+     **/
+    "expires"?: number;
+    /**
+     * The intent of the call from the perspective of this user. This may be an audio call, video call or
+     * something else.
+     */
+    "m.call.intent"?: RTCCallIntent;
+    /**
+     * The id used on the media backend.
+     * (With livekit this is the participant identity on the LK SFU)
+     * This can be a UUID but right now it is `${this.matrixEventData.sender}:${data.device_id}`.
+     *
+     * It is compleatly valid to not set this field. Other clients will treat `undefined` as `${this.matrixEventData.sender}:${data.device_id}`
+     */
+    "membershipID"?: string;
+};
+/**
+ * Validates that `data` matches the format expected by the legacy form of MSC4143.
+ * @param data The event content.
+ * @returns true if `data` is valid SessionMembershipData
+ * @throws {MatrixRTCMembershipParseError} if the content is not valid
+ */
+export declare const checkSessionsMembershipData: (data: IContent) => data is SessionMembershipData;
+//# sourceMappingURL=session.d.ts.map

package/lib/matrixrtc/membershipData/session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../../../src/matrixrtc/membershipData/session.ts"],"names":[],"mappings":"AAgBA,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAE,KAAK,aAAa,EAAE,KAAK,SAAS,EAAE,MAAM,aAAa,CAAC;AAGjE;;;;IAII;AACJ,MAAM,MAAM,qBAAqB,GAAG;IAChC;;OAEG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;;OAKG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;OAGG;IACH,cAAc,EAAE;QACZ,IAAI,EAAE,SAAS,GAAG,MAAM,CAAC;QACzB,eAAe,EAAE,mBAAmB,GAAG,WAAW,GAAG,MAAM,CAAC;KAC/D,CAAC;IAEF;;;OAGG;IACH,gBAAgB,EAAE,SAAS,EAAE,CAAC;IAE9B;;;;;;OAMG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAItB;;;OAGG;IACH,OAAO,CAAC,EAAE,QAAQ,GAAG,QAAQ,CAAC;IAE9B;;;;QAII;IACJ,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,eAAe,CAAC,EAAE,aAAa,CAAC;IAEhC;;;;;;OAMG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,2BAA2B,GAAI,MAAM,QAAQ,KAAG,IAAI,IAAI,qBAwCpE,CAAC"}